탐색 도움말
가입하기 로그인
drachfly
/
android10
1
0
포크 0
파일 이슈 0 풀 리퀘스트 0 위키
트리: 6b68537209
브랜치 태그
android10
/
kernel
/
security
/
pfe
/
pfk_kc.c

pfk_kc.c 20 KB
히스토리 Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917 
  1. /*
    2. 

  2.  * Copyright (c) 2015-2018, The Linux Foundation. All rights reserved.
    3. 

  3.  *
    4. 

  4.  * This program is free software; you can redistribute it and/or modify
    5. 

  5.  * it under the terms of the GNU General Public License version 2 and
    6. 

  6.  * only version 2 as published by the Free Software Foundation.
    7. 

  7.  *
    8. 

  8.  * This program is distributed in the hope that it will be useful,
    9. 

  9.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    10. 

  10.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    11. 

  11.  * GNU General Public License for more details.
    12. 

  12.  */
    13. 

  13. 

  14. /*
    15. 

  15.  * PFK Key Cache
    16. 

  16.  *
    17. 

  17.  * Key Cache used internally in PFK.
    18. 

  18.  * The purpose of the cache is to save access time to QSEE when loading keys.
    19. 

  19.  * Currently the cache is the same size as the total number of keys that can
    20. 

  20.  * be loaded to ICE. Since this number is relatively small, the algorithms for
    21. 

  21.  * cache eviction are simple, linear and based on last usage timestamp, i.e
    22. 

  22.  * the node that will be evicted is the one with the oldest timestamp.
    23. 

  23.  * Empty entries always have the oldest timestamp.
    24. 

  24.  */
    25. 

  25. 

  26. #include <linux/module.h>
    27. 

  27. #include <linux/mutex.h>
    28. 

  28. #include <linux/spinlock.h>
    29. 

  29. #include <crypto/ice.h>
    30. 

  30. #include <linux/errno.h>
    31. 

  31. #include <linux/string.h>
    32. 

  32. #include <linux/jiffies.h>
    33. 

  33. #include <linux/slab.h>
    34. 

  34. #include <linux/printk.h>
    35. 

  35. #include <linux/sched.h>
    36. 

  36. 

  37. #include "pfk_kc.h"
    38. 

  38. #include "pfk_ice.h"
    39. 

  39. 

  40. /** the first available index in ice engine */
    41. 

  41. #define PFK_KC_STARTING_INDEX 2
    42. 

  42. 

  43. /** currently the only supported key and salt sizes */
    44. 

  44. #define PFK_KC_KEY_SIZE 32
    45. 

  45. #define PFK_KC_SALT_SIZE 32
    46. 

  46. 

  47. /** Table size */
    48. 

  48. /* TODO replace by some constant from ice.h */
    49. 

  49. #define PFK_KC_TABLE_SIZE ((32) - (PFK_KC_STARTING_INDEX))
    50. 

  50. 

  51. /** The maximum key and salt size */
    52. 

  52. #define PFK_MAX_KEY_SIZE PFK_KC_KEY_SIZE
    53. 

  53. #define PFK_MAX_SALT_SIZE PFK_KC_SALT_SIZE
    54. 

  54. #define PFK_UFS "ufs"
    55. 

  55. 

  56. static DEFINE_SPINLOCK(kc_lock);
    57. 

  57. static unsigned long flags;
    58. 

  58. static bool kc_ready;
    59. 

  59. static char *s_type = "sdcc";
    60. 

  60. 

  61. /**
    62. 

  62.  * enum pfk_kc_entry_state - state of the entry inside kc table
    63. 

  63.  *
    64. 

  64.  * @FREE:		   entry is free
    65. 

  65.  * @ACTIVE_ICE_PRELOAD:    entry is actively used by ICE engine
    66. 

  66. 			   and cannot be used by others. SCM call
    67. 

  67. 			   to load key to ICE is pending to be performed
    68. 

  68.  * @ACTIVE_ICE_LOADED:     entry is actively used by ICE engine and
    69. 

  69. 			   cannot be used by others. SCM call to load the
    70. 

  70. 			   key to ICE was successfully executed and key is
    71. 

  71. 			   now loaded
    72. 

  72.  * @INACTIVE_INVALIDATING: entry is being invalidated during file close
    73. 

  73. 			   and cannot be used by others until invalidation
    74. 

  74. 			   is complete
    75. 

  75.  * @INACTIVE:		   entry's key is already loaded, but is not
    76. 

  76. 			   currently being used. It can be re-used for
    77. 

  77. 			   optimization and to avoid SCM call cost or
    78. 

  78. 			   it can be taken by another key if there are
    79. 

  79. 			   no FREE entries
    80. 

  80.  * @SCM_ERROR:		   error occurred while scm call was performed to
    81. 

  81. 			   load the key to ICE
    82. 

  82.  */
    83. 

  83. enum pfk_kc_entry_state {
    84. 

  84. 	FREE,
    85. 

  85. 	ACTIVE_ICE_PRELOAD,
    86. 

  86. 	ACTIVE_ICE_LOADED,
    87. 

  87. 	INACTIVE_INVALIDATING,
    88. 

  88. 	INACTIVE,
    89. 

  89. 	SCM_ERROR
    90. 

  90. };
    91. 

  91. 

  92. struct kc_entry {
    93. 

  93. 	 unsigned char key[PFK_MAX_KEY_SIZE];
    94. 

  94. 	 size_t key_size;
    95. 

  95. 

  96. 	 unsigned char salt[PFK_MAX_SALT_SIZE];
    97. 

  97. 	 size_t salt_size;
    98. 

  98. 

  99. 	 u64 time_stamp;
    100. 

  100. 	 u32 key_index;
    101. 

  101. 

  102. 	 struct task_struct *thread_pending;
    103. 

  103. 

  104. 	 enum pfk_kc_entry_state state;
    105. 

  105. 

  106. 	 /* ref count for the number of requests in the HW queue for this key */
    107. 

  107. 	 int loaded_ref_cnt;
    108. 

  108. 	 int scm_error;
    109. 

  109. };
    110. 

  110. 

  111. static struct kc_entry kc_table[PFK_KC_TABLE_SIZE];
    112. 

  112. 

  113. /**
    114. 

  114.  * kc_is_ready() - driver is initialized and ready.
    115. 

  115.  *
    116. 

  116.  * Return: true if the key cache is ready.
    117. 

  117.  */
    118. 

  118. static inline bool kc_is_ready(void)
    119. 

  119. {
    120. 

  120. 	return kc_ready;
    121. 

  121. }
    122. 

  122. 

  123. static inline void kc_spin_lock(void)
    124. 

  124. {
    125. 

  125. 	spin_lock_irqsave(&kc_lock, flags);
    126. 

  126. }
    127. 

  127. 

  128. static inline void kc_spin_unlock(void)
    129. 

  129. {
    130. 

  130. 	spin_unlock_irqrestore(&kc_lock, flags);
    131. 

  131. }
    132. 

  132. 

  133. /**
    134. 

  134.  * pfk_kc_get_storage_type() - return the hardware storage type.
    135. 

  135.  *
    136. 

  136.  * Return: storage type queried during bootup.
    137. 

  137.  */
    138. 

  138. const char *pfk_kc_get_storage_type(void)
    139. 

  139. {
    140. 

  140. 	return s_type;
    141. 

  141. }
    142. 

  142. 

  143. /**
    144. 

  144.  * kc_entry_is_available() - checks whether the entry is available
    145. 

  145.  *
    146. 

  146.  * Return true if it is , false otherwise or if invalid
    147. 

  147.  * Should be invoked under spinlock
    148. 

  148.  */
    149. 

  149. static bool kc_entry_is_available(const struct kc_entry *entry)
    150. 

  150. {
    151. 

  151. 	if (!entry)
    152. 

  152. 		return false;
    153. 

  153. 

  154. 	return (entry->state == FREE || entry->state == INACTIVE);
    155. 

  155. }
    156. 

  156. 

  157. /**
    158. 

  158.  * kc_entry_wait_till_available() - waits till entry is available
    159. 

  159.  *
    160. 

  160.  * Returns 0 in case of success or -ERESTARTSYS if the wait was interrupted
    161. 

  161.  * by signal
    162. 

  162.  *
    163. 

  163.  * Should be invoked under spinlock
    164. 

  164.  */
    165. 

  165. static int kc_entry_wait_till_available(struct kc_entry *entry)
    166. 

  166. {
    167. 

  167. 	int res = 0;
    168. 

  168. 

  169. 	while (!kc_entry_is_available(entry)) {
    170. 

  170. 		set_current_state(TASK_INTERRUPTIBLE);
    171. 

  171. 		if (signal_pending(current)) {
    172. 

  172. 			res = -ERESTARTSYS;
    173. 

  173. 			break;
    174. 

  174. 		}
    175. 

  175. 		/* assuming only one thread can try to invalidate
    176. 

  176. 		 * the same entry
    177. 

  177. 		 */
    178. 

  178. 		entry->thread_pending = current;
    179. 

  179. 		kc_spin_unlock();
    180. 

  180. 		schedule();
    181. 

  181. 		kc_spin_lock();
    182. 

  182. 	}
    183. 

  183. 	set_current_state(TASK_RUNNING);
    184. 

  184. 

  185. 	return res;
    186. 

  186. }
    187. 

  187. 

  188. /**
    189. 

  189.  * kc_entry_start_invalidating() - moves entry to state
    190. 

  190.  *			           INACTIVE_INVALIDATING
    191. 

  191.  *				   If entry is in use, waits till
    192. 

  192.  *				   it gets available
    193. 

  193.  * @entry: pointer to entry
    194. 

  194.  *
    195. 

  195.  * Return 0 in case of success, otherwise error
    196. 

  196.  * Should be invoked under spinlock
    197. 

  197.  */
    198. 

  198. static int kc_entry_start_invalidating(struct kc_entry *entry)
    199. 

  199. {
    200. 

  200. 	int res;
    201. 

  201. 

  202. 	res = kc_entry_wait_till_available(entry);
    203. 

  203. 	if (res)
    204. 

  204. 		return res;
    205. 

  205. 

  206. 	entry->state = INACTIVE_INVALIDATING;
    207. 

  207. 

  208. 	return 0;
    209. 

  209. }
    210. 

  210. 

  211. /**
    212. 

  212.  * kc_entry_finish_invalidating() - moves entry to state FREE
    213. 

  213.  *				    wakes up all the tasks waiting
    214. 

  214.  *				    on it
    215. 

  215.  *
    216. 

  216.  * @entry: pointer to entry
    217. 

  217.  *
    218. 

  218.  * Return 0 in case of success, otherwise error
    219. 

  219.  * Should be invoked under spinlock
    220. 

  220.  */
    221. 

  221. static void kc_entry_finish_invalidating(struct kc_entry *entry)
    222. 

  222. {
    223. 

  223. 	if (!entry)
    224. 

  224. 		return;
    225. 

  225. 

  226. 	if (entry->state != INACTIVE_INVALIDATING)
    227. 

  227. 		return;
    228. 

  228. 

  229. 	entry->state = FREE;
    230. 

  230. }
    231. 

  231. 

  232. /**
    233. 

  233.  * kc_min_entry() - compare two entries to find one with minimal time
    234. 

  234.  * @a: ptr to the first entry. If NULL the other entry will be returned
    235. 

  235.  * @b: pointer to the second entry
    236. 

  236.  *
    237. 

  237.  * Return the entry which timestamp is the minimal, or b if a is NULL
    238. 

  238.  */
    239. 

  239. static inline struct kc_entry *kc_min_entry(struct kc_entry *a,
    240. 

  240. 		struct kc_entry *b)
    241. 

  241. {
    242. 

  242. 	if (!a)
    243. 

  243. 		return b;
    244. 

  244. 

  245. 	if (time_before64(b->time_stamp, a->time_stamp))
    246. 

  246. 		return b;
    247. 

  247. 

  248. 	return a;
    249. 

  249. }
    250. 

  250. 

  251. /**
    252. 

  252.  * kc_entry_at_index() - return entry at specific index
    253. 

  253.  * @index: index of entry to be accessed
    254. 

  254.  *
    255. 

  255.  * Return entry
    256. 

  256.  * Should be invoked under spinlock
    257. 

  257.  */
    258. 

  258. static struct kc_entry *kc_entry_at_index(int index)
    259. 

  259. {
    260. 

  260. 	return &(kc_table[index]);
    261. 

  261. }
    262. 

  262. 

  263. /**
    264. 

  264.  * kc_find_key_at_index() - find kc entry starting at specific index
    265. 

  265.  * @key: key to look for
    266. 

  266.  * @key_size: the key size
    267. 

  267.  * @salt: salt to look for
    268. 

  268.  * @salt_size: the salt size
    269. 

  269.  * @sarting_index: index to start search with, if entry found, updated with
    270. 

  270.  * index of that entry
    271. 

  271.  *
    272. 

  272.  * Return entry or NULL in case of error
    273. 

  273.  * Should be invoked under spinlock
    274. 

  274.  */
    275. 

  275. static struct kc_entry *kc_find_key_at_index(const unsigned char *key,
    276. 

  276. 	size_t key_size, const unsigned char *salt, size_t salt_size,
    277. 

  277. 	int *starting_index)
    278. 

  278. {
    279. 

  279. 	struct kc_entry *entry = NULL;
    280. 

  280. 	int i = 0;
    281. 

  281. 

  282. 	for (i = *starting_index; i < PFK_KC_TABLE_SIZE; i++) {
    283. 

  283. 		entry = kc_entry_at_index(i);
    284. 

  284. 

  285. 		if (salt != NULL) {
    286. 

  286. 			if (entry->salt_size != salt_size)
    287. 

  287. 				continue;
    288. 

  288. 

  289. 			if (memcmp(entry->salt, salt, salt_size) != 0)
    290. 

  290. 				continue;
    291. 

  291. 		}
    292. 

  292. 

  293. 		if (entry->key_size != key_size)
    294. 

  294. 			continue;
    295. 

  295. 

  296. 		if (memcmp(entry->key, key, key_size) == 0) {
    297. 

  297. 			*starting_index = i;
    298. 

  298. 			return entry;
    299. 

  299. 		}
    300. 

  300. 	}
    301. 

  301. 

  302. 	return NULL;
    303. 

  303. }
    304. 

  304. 

  305. /**
    306. 

  306.  * kc_find_key() - find kc entry
    307. 

  307.  * @key: key to look for
    308. 

  308.  * @key_size: the key size
    309. 

  309.  * @salt: salt to look for
    310. 

  310.  * @salt_size: the salt size
    311. 

  311.  *
    312. 

  312.  * Return entry or NULL in case of error
    313. 

  313.  * Should be invoked under spinlock
    314. 

  314.  */
    315. 

  315. static struct kc_entry *kc_find_key(const unsigned char *key, size_t key_size,
    316. 

  316. 		const unsigned char *salt, size_t salt_size)
    317. 

  317. {
    318. 

  318. 	int index = 0;
    319. 

  319. 

  320. 	return kc_find_key_at_index(key, key_size, salt, salt_size, &index);
    321. 

  321. }
    322. 

  322. 

  323. /**
    324. 

  324.  * kc_find_oldest_entry_non_locked() - finds the entry with minimal timestamp
    325. 

  325.  * that is not locked
    326. 

  326.  *
    327. 

  327.  * Returns entry with minimal timestamp. Empty entries have timestamp
    328. 

  328.  * of 0, therefore they are returned first.
    329. 

  329.  * If all the entries are locked, will return NULL
    330. 

  330.  * Should be invoked under spin lock
    331. 

  331.  */
    332. 

  332. static struct kc_entry *kc_find_oldest_entry_non_locked(void)
    333. 

  333. {
    334. 

  334. 	struct kc_entry *curr_min_entry = NULL;
    335. 

  335. 	struct kc_entry *entry = NULL;
    336. 

  336. 	int i = 0;
    337. 

  337. 

  338. 	for (i = 0; i < PFK_KC_TABLE_SIZE; i++) {
    339. 

  339. 		entry = kc_entry_at_index(i);
    340. 

  340. 

  341. 		if (entry->state == FREE)
    342. 

  342. 			return entry;
    343. 

  343. 

  344. 		if (entry->state == INACTIVE)
    345. 

  345. 			curr_min_entry = kc_min_entry(curr_min_entry, entry);
    346. 

  346. 	}
    347. 

  347. 

  348. 	return curr_min_entry;
    349. 

  349. }
    350. 

  350. 

  351. /**
    352. 

  352.  * kc_update_timestamp() - updates timestamp of entry to current
    353. 

  353.  *
    354. 

  354.  * @entry: entry to update
    355. 

  355.  *
    356. 

  356.  */
    357. 

  357. static void kc_update_timestamp(struct kc_entry *entry)
    358. 

  358. {
    359. 

  359. 	if (!entry)
    360. 

  360. 		return;
    361. 

  361. 

  362. 	entry->time_stamp = get_jiffies_64();
    363. 

  363. }
    364. 

  364. 

  365. /**
    366. 

  366.  * kc_clear_entry() - clear the key from entry and mark entry not in use
    367. 

  367.  *
    368. 

  368.  * @entry: pointer to entry
    369. 

  369.  *
    370. 

  370.  * Should be invoked under spinlock
    371. 

  371.  */
    372. 

  372. static void kc_clear_entry(struct kc_entry *entry)
    373. 

  373. {
    374. 

  374. 	if (!entry)
    375. 

  375. 		return;
    376. 

  376. 

  377. 	memset(entry->key, 0, entry->key_size);
    378. 

  378. 	memset(entry->salt, 0, entry->salt_size);
    379. 

  379. 

  380. 	entry->key_size = 0;
    381. 

  381. 	entry->salt_size = 0;
    382. 

  382. 

  383. 	entry->time_stamp = 0;
    384. 

  384. 	entry->scm_error = 0;
    385. 

  385. 

  386. 	entry->state = FREE;
    387. 

  387. 

  388. 	entry->loaded_ref_cnt = 0;
    389. 

  389. 	entry->thread_pending = NULL;
    390. 

  390. }
    391. 

  391. 

  392. /**
    393. 

  393.  * kc_update_entry() - replaces the key in given entry and
    394. 

  394.  *			loads the new key to ICE
    395. 

  395.  *
    396. 

  396.  * @entry: entry to replace key in
    397. 

  397.  * @key: key
    398. 

  398.  * @key_size: key_size
    399. 

  399.  * @salt: salt
    400. 

  400.  * @salt_size: salt_size
    401. 

  401.  * @data_unit: dun size
    402. 

  402.  *
    403. 

  403.  * The previous key is securely released and wiped, the new one is loaded
    404. 

  404.  * to ICE.
    405. 

  405.  * Should be invoked under spinlock
    406. 

  406.  */
    407. 

  407. static int kc_update_entry(struct kc_entry *entry, const unsigned char *key,
    408. 

  408. 	size_t key_size, const unsigned char *salt, size_t salt_size,
    409. 

  409. 	unsigned int data_unit)
    410. 

  410. {
    411. 

  411. 	int ret;
    412. 

  412. 

  413. 	kc_clear_entry(entry);
    414. 

  414. 

  415. 	memcpy(entry->key, key, key_size);
    416. 

  416. 	entry->key_size = key_size;
    417. 

  417. 

  418. 	memcpy(entry->salt, salt, salt_size);
    419. 

  419. 	entry->salt_size = salt_size;
    420. 

  420. 

  421. 	/* Mark entry as no longer free before releasing the lock */
    422. 

  422. 	entry->state = ACTIVE_ICE_PRELOAD;
    423. 

  423. 	kc_spin_unlock();
    424. 

  424. 

  425. 	ret = qti_pfk_ice_set_key(entry->key_index, entry->key,
    426. 

  426. 			entry->salt, s_type, data_unit);
    427. 

  427. 

  428. 	kc_spin_lock();
    429. 

  429. 	return ret;
    430. 

  430. }
    431. 

  431. 

  432. /**
    433. 

  433.  * pfk_kc_init() - init function
    434. 

  434.  *
    435. 

  435.  * Return 0 in case of success, error otherwise
    436. 

  436.  */
    437. 

  437. int pfk_kc_init(void)
    438. 

  438. {
    439. 

  439. 	int i = 0;
    440. 

  440. 	struct kc_entry *entry = NULL;
    441. 

  441. 

  442. 	kc_spin_lock();
    443. 

  443. 	for (i = 0; i < PFK_KC_TABLE_SIZE; i++) {
    444. 

  444. 		entry = kc_entry_at_index(i);
    445. 

  445. 		entry->key_index = PFK_KC_STARTING_INDEX + i;
    446. 

  446. 	}
    447. 

  447. 	kc_ready = true;
    448. 

  448. 	kc_spin_unlock();
    449. 

  449. 	return 0;
    450. 

  450. }
    451. 

  451. 

  452. /**
    453. 

  453.  * pfk_kc_denit() - deinit function
    454. 

  454.  *
    455. 

  455.  * Return 0 in case of success, error otherwise
    456. 

  456.  */
    457. 

  457. int pfk_kc_deinit(void)
    458. 

  458. {
    459. 

  459. 	int res = pfk_kc_clear();
    460. 

  460. 

  461. 	kc_ready = false;
    462. 

  462. 	return res;
    463. 

  463. }
    464. 

  464. 

  465. /**
    466. 

  466.  * pfk_kc_load_key_start() - retrieve the key from cache or add it if
    467. 

  467.  * it's not there and return the ICE hw key index in @key_index.
    468. 

  468.  * @key: pointer to the key
    469. 

  469.  * @key_size: the size of the key
    470. 

  470.  * @salt: pointer to the salt
    471. 

  471.  * @salt_size: the size of the salt
    472. 

  472.  * @key_index: the pointer to key_index where the output will be stored
    473. 

  473.  * @async: whether scm calls are allowed in the caller context
    474. 

  474.  *
    475. 

  475.  * If key is present in cache, than the key_index will be retrieved from cache.
    476. 

  476.  * If it is not present, the oldest entry from kc table will be evicted,
    477. 

  477.  * the key will be loaded to ICE via QSEE to the index that is the evicted
    478. 

  478.  * entry number and stored in cache.
    479. 

  479.  * Entry that is going to be used is marked as being used, it will mark
    480. 

  480.  * as not being used when ICE finishes using it and pfk_kc_load_key_end
    481. 

  481.  * will be invoked.
    482. 

  482.  * As QSEE calls can only be done from a non-atomic context, when @async flag
    483. 

  483.  * is set to 'false', it specifies that it is ok to make the calls in the
    484. 

  484.  * current context. Otherwise, when @async is set, the caller should retry the
    485. 

  485.  * call again from a different context, and -EAGAIN error will be returned.
    486. 

  486.  *
    487. 

  487.  * Return 0 in case of success, error otherwise
    488. 

  488.  */
    489. 

  489. int pfk_kc_load_key_start(const unsigned char *key, size_t key_size,
    490. 

  490. 		const unsigned char *salt, size_t salt_size, u32 *key_index,
    491. 

  491. 		bool async, unsigned int data_unit)
    492. 

  492. {
    493. 

  493. 	int ret = 0;
    494. 

  494. 	struct kc_entry *entry = NULL;
    495. 

  495. 	bool entry_exists = false;
    496. 

  496. 

  497. 	if (!kc_is_ready())
    498. 

  498. 		return -ENODEV;
    499. 

  499. 

  500. 	if (!key || !salt || !key_index) {
    501. 

  501. 		pr_err("%s key/salt/key_index NULL\n", __func__);
    502. 

  502. 		return -EINVAL;
    503. 

  503. 	}
    504. 

  504. 

  505. 	if (key_size != PFK_KC_KEY_SIZE) {
    506. 

  506. 		pr_err("unsupported key size %zu\n", key_size);
    507. 

  507. 		return -EINVAL;
    508. 

  508. 	}
    509. 

  509. 

  510. 	if (salt_size != PFK_KC_SALT_SIZE) {
    511. 

  511. 		pr_err("unsupported salt size %zu\n", salt_size);
    512. 

  512. 		return -EINVAL;
    513. 

  513. 	}
    514. 

  514. 

  515. 	kc_spin_lock();
    516. 

  516. 

  517. 	entry = kc_find_key(key, key_size, salt, salt_size);
    518. 

  518. 	if (!entry) {
    519. 

  519. 		if (async) {
    520. 

  520. 			pr_debug("%s task will populate entry\n", __func__);
    521. 

  521. 			kc_spin_unlock();
    522. 

  522. 			return -EAGAIN;
    523. 

  523. 		}
    524. 

  524. 

  525. 		entry = kc_find_oldest_entry_non_locked();
    526. 

  526. 		if (!entry) {
    527. 

  527. 			/* could not find a single non locked entry,
    528. 

  528. 			 * return EBUSY to upper layers so that the
    529. 

  529. 			 * request will be rescheduled
    530. 

  530. 			 */
    531. 

  531. 			kc_spin_unlock();
    532. 

  532. 			return -EBUSY;
    533. 

  533. 		}
    534. 

  534. 	} else {
    535. 

  535. 		entry_exists = true;
    536. 

  536. 	}
    537. 

  537. 

  538. 	pr_debug("entry with index %d is in state %d\n",
    539. 

  539. 		entry->key_index, entry->state);
    540. 

  540. 

  541. 	switch (entry->state) {
    542. 

  542. 	case (INACTIVE):
    543. 

  543. 		if (entry_exists) {
    544. 

  544. 			kc_update_timestamp(entry);
    545. 

  545. 			entry->state = ACTIVE_ICE_LOADED;
    546. 

  546. 

  547. 			if (!strcmp(s_type, (char *)PFK_UFS)) {
    548. 

  548. 				if (async)
    549. 

  549. 					entry->loaded_ref_cnt++;
    550. 

  550. 			} else {
    551. 

  551. 				entry->loaded_ref_cnt++;
    552. 

  552. 			}
    553. 

  553. 			break;
    554. 

  554. 		}
    555. 

  555. 	case (FREE):
    556. 

  556. 		ret = kc_update_entry(entry, key, key_size, salt, salt_size,
    557. 

  557. 					data_unit);
    558. 

  558. 		if (ret) {
    559. 

  559. 			entry->state = SCM_ERROR;
    560. 

  560. 			entry->scm_error = ret;
    561. 

  561. 			pr_err("%s: key load error (%d)\n", __func__, ret);
    562. 

  562. 		} else {
    563. 

  563. 			kc_update_timestamp(entry);
    564. 

  564. 			entry->state = ACTIVE_ICE_LOADED;
    565. 

  565. 

  566. 			/*
    567. 

  567. 			 * In case of UFS only increase ref cnt for async calls,
    568. 

  568. 			 * sync calls from within work thread do not pass
    569. 

  569. 			 * requests further to HW
    570. 

  570. 			 */
    571. 

  571. 			if (!strcmp(s_type, (char *)PFK_UFS)) {
    572. 

  572. 				if (async)
    573. 

  573. 					entry->loaded_ref_cnt++;
    574. 

  574. 			} else {
    575. 

  575. 				entry->loaded_ref_cnt++;
    576. 

  576. 			}
    577. 

  577. 		}
    578. 

  578. 		break;
    579. 

  579. 	case (ACTIVE_ICE_PRELOAD):
    580. 

  580. 	case (INACTIVE_INVALIDATING):
    581. 

  581. 		ret = -EAGAIN;
    582. 

  582. 		break;
    583. 

  583. 	case (ACTIVE_ICE_LOADED):
    584. 

  584. 		kc_update_timestamp(entry);
    585. 

  585. 

  586. 		if (!strcmp(s_type, (char *)PFK_UFS)) {
    587. 

  587. 			if (async)
    588. 

  588. 				entry->loaded_ref_cnt++;
    589. 

  589. 		} else {
    590. 

  590. 			entry->loaded_ref_cnt++;
    591. 

  591. 		}
    592. 

  592. 		break;
    593. 

  593. 	case(SCM_ERROR):
    594. 

  594. 		ret = entry->scm_error;
    595. 

  595. 		kc_clear_entry(entry);
    596. 

  596. 		entry->state = FREE;
    597. 

  597. 		break;
    598. 

  598. 	default:
    599. 

  599. 		pr_err("invalid state %d for entry with key index %d\n",
    600. 

  600. 			entry->state, entry->key_index);
    601. 

  601. 		ret = -EINVAL;
    602. 

  602. 	}
    603. 

  603. 

  604. 	*key_index = entry->key_index;
    605. 

  605. 	kc_spin_unlock();
    606. 

  606. 

  607. 	return ret;
    608. 

  608. }
    609. 

  609. 

  610. /**
    611. 

  611.  * pfk_kc_load_key_end() - finish the process of key loading that was started
    612. 

  612.  *						   by pfk_kc_load_key_start
    613. 

  613.  *						   by marking the entry as not
    614. 

  614.  *						   being in use
    615. 

  615.  * @key: pointer to the key
    616. 

  616.  * @key_size: the size of the key
    617. 

  617.  * @salt: pointer to the salt
    618. 

  618.  * @salt_size: the size of the salt
    619. 

  619.  *
    620. 

  620.  */
    621. 

  621. void pfk_kc_load_key_end(const unsigned char *key, size_t key_size,
    622. 

  622. 		const unsigned char *salt, size_t salt_size)
    623. 

  623. {
    624. 

  624. 	struct kc_entry *entry = NULL;
    625. 

  625. 	struct task_struct *tmp_pending = NULL;
    626. 

  626. 	int ref_cnt = 0;
    627. 

  627. 

  628. 	if (!kc_is_ready())
    629. 

  629. 		return;
    630. 

  630. 

  631. 	if (!key || !salt)
    632. 

  632. 		return;
    633. 

  633. 

  634. 	if (key_size != PFK_KC_KEY_SIZE)
    635. 

  635. 		return;
    636. 

  636. 

  637. 	if (salt_size != PFK_KC_SALT_SIZE)
    638. 

  638. 		return;
    639. 

  639. 

  640. 	kc_spin_lock();
    641. 

  641. 

  642. 	entry = kc_find_key(key, key_size, salt, salt_size);
    643. 

  643. 	if (!entry) {
    644. 

  644. 		kc_spin_unlock();
    645. 

  645. 		pr_err("internal error, there should an entry to unlock\n");
    646. 

  646. 

  647. 		return;
    648. 

  648. 	}
    649. 

  649. 	ref_cnt = --entry->loaded_ref_cnt;
    650. 

  650. 

  651. 	if (ref_cnt < 0)
    652. 

  652. 		pr_err("internal error, ref count should never be negative\n");
    653. 

  653. 

  654. 	if (!ref_cnt) {
    655. 

  655. 		entry->state = INACTIVE;
    656. 

  656. 		/*
    657. 

  657. 		 * wake-up invalidation if it's waiting
    658. 

  658. 		 * for the entry to be released
    659. 

  659. 		 */
    660. 

  660. 		if (entry->thread_pending) {
    661. 

  661. 			tmp_pending = entry->thread_pending;
    662. 

  662. 			entry->thread_pending = NULL;
    663. 

  663. 

  664. 			kc_spin_unlock();
    665. 

  665. 			wake_up_process(tmp_pending);
    666. 

  666. 			return;
    667. 

  667. 		}
    668. 

  668. 	}
    669. 

  669. 

  670. 	kc_spin_unlock();
    671. 

  671. }
    672. 

  672. 

  673. /**
    674. 

  674.  * pfk_kc_remove_key() - remove the key from cache and from ICE engine
    675. 

  675.  * @key: pointer to the key
    676. 

  676.  * @key_size: the size of the key
    677. 

  677.  * @salt: pointer to the key
    678. 

  678.  * @salt_size: the size of the key
    679. 

  679.  *
    680. 

  680.  * Return 0 in case of success, error otherwise (also in case of non
    681. 

  681.  * (existing key)
    682. 

  682.  */
    683. 

  683. int pfk_kc_remove_key_with_salt(const unsigned char *key, size_t key_size,
    684. 

  684. 		const unsigned char *salt, size_t salt_size)
    685. 

  685. {
    686. 

  686. 	struct kc_entry *entry = NULL;
    687. 

  687. 	int res = 0;
    688. 

  688. 

  689. 	if (!kc_is_ready())
    690. 

  690. 		return -ENODEV;
    691. 

  691. 

  692. 	if (!key)
    693. 

  693. 		return -EINVAL;
    694. 

  694. 

  695. 	if (!salt)
    696. 

  696. 		return -EINVAL;
    697. 

  697. 

  698. 	if (key_size != PFK_KC_KEY_SIZE)
    699. 

  699. 		return -EINVAL;
    700. 

  700. 

  701. 	if (salt_size != PFK_KC_SALT_SIZE)
    702. 

  702. 		return -EINVAL;
    703. 

  703. 

  704. 	kc_spin_lock();
    705. 

  705. 

  706. 	entry = kc_find_key(key, key_size, salt, salt_size);
    707. 

  707. 	if (!entry) {
    708. 

  708. 		pr_debug("%s: key does not exist\n", __func__);
    709. 

  709. 		kc_spin_unlock();
    710. 

  710. 		return -EINVAL;
    711. 

  711. 	}
    712. 

  712. 

  713. 	res = kc_entry_start_invalidating(entry);
    714. 

  714. 	if (res != 0) {
    715. 

  715. 		kc_spin_unlock();
    716. 

  716. 		return res;
    717. 

  717. 	}
    718. 

  718. 	kc_clear_entry(entry);
    719. 

  719. 

  720. 	kc_spin_unlock();
    721. 

  721. 

  722. 	qti_pfk_ice_invalidate_key(entry->key_index, s_type);
    723. 

  723. 

  724. 	kc_spin_lock();
    725. 

  725. 	kc_entry_finish_invalidating(entry);
    726. 

  726. 	kc_spin_unlock();
    727. 

  727. 

  728. 	return 0;
    729. 

  729. }
    730. 

  730. 

  731. /**
    732. 

  732.  * pfk_kc_remove_key() - remove the key from cache and from ICE engine
    733. 

  733.  * when no salt is available. Will only search key part, if there are several,
    734. 

  734.  * all will be removed
    735. 

  735.  *
    736. 

  736.  * @key: pointer to the key
    737. 

  737.  * @key_size: the size of the key
    738. 

  738.  *
    739. 

  739.  * Return 0 in case of success, error otherwise (also for non-existing key)
    740. 

  740.  */
    741. 

  741. int pfk_kc_remove_key(const unsigned char *key, size_t key_size)
    742. 

  742. {
    743. 

  743. 	struct kc_entry *entry = NULL;
    744. 

  744. 	int index = 0;
    745. 

  745. 	int temp_indexes[PFK_KC_TABLE_SIZE] = {0};
    746. 

  746. 	int temp_indexes_size = 0;
    747. 

  747. 	int i = 0;
    748. 

  748. 	int res = 0;
    749. 

  749. 

  750. 	if (!kc_is_ready())
    751. 

  751. 		return -ENODEV;
    752. 

  752. 

  753. 	if (!key)
    754. 

  754. 		return -EINVAL;
    755. 

  755. 

  756. 	if (key_size != PFK_KC_KEY_SIZE)
    757. 

  757. 		return -EINVAL;
    758. 

  758. 

  759. 	memset(temp_indexes, -1, sizeof(temp_indexes));
    760. 

  760. 

  761. 	kc_spin_lock();
    762. 

  762. 

  763. 	entry = kc_find_key_at_index(key, key_size, NULL, 0, &index);
    764. 

  764. 	if (!entry) {
    765. 

  765. 		pr_err("%s: key does not exist\n", __func__);
    766. 

  766. 		kc_spin_unlock();
    767. 

  767. 		return -EINVAL;
    768. 

  768. 	}
    769. 

  769. 

  770. 	res = kc_entry_start_invalidating(entry);
    771. 

  771. 	if (res != 0) {
    772. 

  772. 		kc_spin_unlock();
    773. 

  773. 		return res;
    774. 

  774. 	}
    775. 

  775. 

  776. 	temp_indexes[temp_indexes_size++] = index;
    777. 

  777. 	kc_clear_entry(entry);
    778. 

  778. 

  779. 	/* let's clean additional entries with the same key if there are any */
    780. 

  780. 	do {
    781. 

  781. 		index++;
    782. 

  782. 		entry = kc_find_key_at_index(key, key_size, NULL, 0, &index);
    783. 

  783. 		if (!entry)
    784. 

  784. 			break;
    785. 

  785. 

  786. 		res = kc_entry_start_invalidating(entry);
    787. 

  787. 		if (res != 0) {
    788. 

  788. 			kc_spin_unlock();
    789. 

  789. 			goto out;
    790. 

  790. 		}
    791. 

  791. 

  792. 		temp_indexes[temp_indexes_size++] = index;
    793. 

  793. 

  794. 		kc_clear_entry(entry);
    795. 

  795. 

  796. 

  797. 	} while (true);
    798. 

  798. 

  799. 	kc_spin_unlock();
    800. 

  800. 

  801. 	temp_indexes_size--;
    802. 

  802. 	for (i = temp_indexes_size; i >= 0 ; i--)
    803. 

  803. 		qti_pfk_ice_invalidate_key(
    804. 

  804. 			kc_entry_at_index(temp_indexes[i])->key_index,
    805. 

  805. 					s_type);
    806. 

  806. 

  807. 	/* fall through */
    808. 

  808. 	res = 0;
    809. 

  809. 

  810. out:
    811. 

  811. 	kc_spin_lock();
    812. 

  812. 	for (i = temp_indexes_size; i >= 0 ; i--)
    813. 

  813. 		kc_entry_finish_invalidating(
    814. 

  814. 				kc_entry_at_index(temp_indexes[i]));
    815. 

  815. 	kc_spin_unlock();
    816. 

  816. 

  817. 	return res;
    818. 

  818. }
    819. 

  819. 

  820. /**
    821. 

  821.  * pfk_kc_clear() - clear the table and remove all keys from ICE
    822. 

  822.  *
    823. 

  823.  * Return 0 on success, error otherwise
    824. 

  824.  *
    825. 

  825.  */
    826. 

  826. int pfk_kc_clear(void)
    827. 

  827. {
    828. 

  828. 	struct kc_entry *entry = NULL;
    829. 

  829. 	int i = 0;
    830. 

  830. 	int res = 0;
    831. 

  831. 

  832. 	if (!kc_is_ready())
    833. 

  833. 		return -ENODEV;
    834. 

  834. 

  835. 	kc_spin_lock();
    836. 

  836. 	for (i = 0; i < PFK_KC_TABLE_SIZE; i++) {
    837. 

  837. 		entry = kc_entry_at_index(i);
    838. 

  838. 		res = kc_entry_start_invalidating(entry);
    839. 

  839. 		if (res != 0) {
    840. 

  840. 			kc_spin_unlock();
    841. 

  841. 			goto out;
    842. 

  842. 		}
    843. 

  843. 		kc_clear_entry(entry);
    844. 

  844. 	}
    845. 

  845. 	kc_spin_unlock();
    846. 

  846. 

  847. 	for (i = 0; i < PFK_KC_TABLE_SIZE; i++)
    848. 

  848. 		qti_pfk_ice_invalidate_key(kc_entry_at_index(i)->key_index,
    849. 

  849. 					s_type);
    850. 

  850. 

  851. 	/* fall through */
    852. 

  852. 	res = 0;
    853. 

  853. out:
    854. 

  854. 	kc_spin_lock();
    855. 

  855. 	for (i = 0; i < PFK_KC_TABLE_SIZE; i++)
    856. 

  856. 		kc_entry_finish_invalidating(kc_entry_at_index(i));
    857. 

  857. 	kc_spin_unlock();
    858. 

  858. 

  859. 	return res;
    860. 

  860. }
    861. 

  861. 

  862. /**
    863. 

  863.  * pfk_kc_clear_on_reset() - clear the table and remove all keys from ICE
    864. 

  864.  * The assumption is that at this point we don't have any pending transactions
    865. 

  865.  * Also, there is no need to clear keys from ICE
    866. 

  866.  *
    867. 

  867.  * Return 0 on success, error otherwise
    868. 

  868.  *
    869. 

  869.  */
    870. 

  870. void pfk_kc_clear_on_reset(void)
    871. 

  871. {
    872. 

  872. 	struct kc_entry *entry = NULL;
    873. 

  873. 	int i = 0;
    874. 

  874. 

  875. 	if (!kc_is_ready())
    876. 

  876. 		return;
    877. 

  877. 

  878. 	kc_spin_lock();
    879. 

  879. 	for (i = 0; i < PFK_KC_TABLE_SIZE; i++) {
    880. 

  880. 		entry = kc_entry_at_index(i);
    881. 

  881. 		kc_clear_entry(entry);
    882. 

  882. 	}
    883. 

  883. 	kc_spin_unlock();
    884. 

  884. }
    885. 

  885. 

  886. static int pfk_kc_find_storage_type(char **device)
    887. 

  887. {
    888. 

  888. 	char boot[20] = {'\0'};
    889. 

  889. 	char *match = (char *)strnstr(saved_command_line,
    890. 

  890. 				"androidboot.bootdevice=",
    891. 

  891. 				strlen(saved_command_line));
    892. 

  892. 	if (match) {
    893. 

  893. 		memcpy(boot, (match + strlen("androidboot.bootdevice=")),
    894. 

  894. 			sizeof(boot) - 1);
    895. 

  895. 		if (strnstr(boot, PFK_UFS, strlen(boot)))
    896. 

  896. 			*device = PFK_UFS;
    897. 

  897. 

  898. 		return 0;
    899. 

  899. 	}
    900. 

  900. 	return -EINVAL;
    901. 

  901. }
    902. 

  902. 

  903. static int __init pfk_kc_pre_init(void)
    904. 

  904. {
    905. 

  905. 	return pfk_kc_find_storage_type(&s_type);
    906. 

  906. }
    907. 

  907. 

  908. static void __exit pfk_kc_exit(void)
    909. 

  909. {
    910. 

  910. 	s_type = NULL;
    911. 

  911. }
    912. 

  912. 

  913. module_init(pfk_kc_pre_init);
    914. 

  914. module_exit(pfk_kc_exit);
    915. 

  915. 

  916. MODULE_LICENSE("GPL v2");
    917. 

  917. MODULE_DESCRIPTION("Per-File-Key-KC driver");
    918.