crypto: caam/qi - add GCM support

	return -EINVAL;

}

static int gcm_set_sh_desc(struct crypto_aead *aead)

{

	struct caam_ctx *ctx = crypto_aead_ctx(aead);

	unsigned int ivsize = crypto_aead_ivsize(aead);

	int rem_bytes = CAAM_DESC_BYTES_MAX - DESC_JOB_IO_LEN -

			ctx->cdata.keylen;

	if (!ctx->cdata.keylen || !ctx->authsize)

		return 0;

	/*

	 * Job Descriptor and Shared Descriptor

	 * must fit into the 64-word Descriptor h/w Buffer

	 */

	if (rem_bytes >= DESC_QI_GCM_ENC_LEN) {

		ctx->cdata.key_inline = true;

		ctx->cdata.key_virt = ctx->key;

	} else {

		ctx->cdata.key_inline = false;

		ctx->cdata.key_dma = ctx->key_dma;

	}

	cnstr_shdsc_gcm_encap(ctx->sh_desc_enc, &ctx->cdata, ivsize,

			      ctx->authsize, true);

	/*

	 * Job Descriptor and Shared Descriptor

	 * must fit into the 64-word Descriptor h/w Buffer

	 */

	if (rem_bytes >= DESC_QI_GCM_DEC_LEN) {

		ctx->cdata.key_inline = true;

		ctx->cdata.key_virt = ctx->key;

	} else {

		ctx->cdata.key_inline = false;

		ctx->cdata.key_dma = ctx->key_dma;

	}

	cnstr_shdsc_gcm_decap(ctx->sh_desc_dec, &ctx->cdata, ivsize,

			      ctx->authsize, true);

	return 0;

}

static int gcm_setauthsize(struct crypto_aead *authenc, unsigned int authsize)

{

	struct caam_ctx *ctx = crypto_aead_ctx(authenc);

	ctx->authsize = authsize;

	gcm_set_sh_desc(authenc);

	return 0;

}

static int gcm_setkey(struct crypto_aead *aead,

		      const u8 *key, unsigned int keylen)

{

	struct caam_ctx *ctx = crypto_aead_ctx(aead);

	struct device *jrdev = ctx->jrdev;

	int ret;

#ifdef DEBUG

	print_hex_dump(KERN_ERR, "key in @" __stringify(__LINE__)": ",

		       DUMP_PREFIX_ADDRESS, 16, 4, key, keylen, 1);

#endif

	memcpy(ctx->key, key, keylen);

	dma_sync_single_for_device(jrdev, ctx->key_dma, keylen, ctx->dir);

	ctx->cdata.keylen = keylen;

	ret = gcm_set_sh_desc(aead);

	if (ret)

		return ret;

	/* Now update the driver contexts with the new shared descriptor */

	if (ctx->drv_ctx[ENCRYPT]) {

		ret = caam_drv_ctx_update(ctx->drv_ctx[ENCRYPT],

					  ctx->sh_desc_enc);

		if (ret) {

			dev_err(jrdev, "driver enc context update failed\n");

			return ret;

		}

	}

	if (ctx->drv_ctx[DECRYPT]) {

		ret = caam_drv_ctx_update(ctx->drv_ctx[DECRYPT],

					  ctx->sh_desc_dec);

		if (ret) {

			dev_err(jrdev, "driver dec context update failed\n");

			return ret;

		}

	}

	return 0;

}

static int rfc4106_set_sh_desc(struct crypto_aead *aead)

{

	struct caam_ctx *ctx = crypto_aead_ctx(aead);

	unsigned int ivsize = crypto_aead_ivsize(aead);

	int rem_bytes = CAAM_DESC_BYTES_MAX - DESC_JOB_IO_LEN -

			ctx->cdata.keylen;

	if (!ctx->cdata.keylen || !ctx->authsize)

		return 0;

	ctx->cdata.key_virt = ctx->key;

	/*

	 * Job Descriptor and Shared Descriptor

	 * must fit into the 64-word Descriptor h/w Buffer

	 */

	if (rem_bytes >= DESC_QI_RFC4106_ENC_LEN) {

		ctx->cdata.key_inline = true;

	} else {

		ctx->cdata.key_inline = false;

		ctx->cdata.key_dma = ctx->key_dma;

	}

	cnstr_shdsc_rfc4106_encap(ctx->sh_desc_enc, &ctx->cdata, ivsize,

				  ctx->authsize, true);

	/*

	 * Job Descriptor and Shared Descriptor

	 * must fit into the 64-word Descriptor h/w Buffer

	 */

	if (rem_bytes >= DESC_QI_RFC4106_DEC_LEN) {

		ctx->cdata.key_inline = true;

	} else {

		ctx->cdata.key_inline = false;

		ctx->cdata.key_dma = ctx->key_dma;

	}

	cnstr_shdsc_rfc4106_decap(ctx->sh_desc_dec, &ctx->cdata, ivsize,

				  ctx->authsize, true);

	return 0;

}

static int rfc4106_setauthsize(struct crypto_aead *authenc,

			       unsigned int authsize)

{

	struct caam_ctx *ctx = crypto_aead_ctx(authenc);

	ctx->authsize = authsize;

	rfc4106_set_sh_desc(authenc);

	return 0;

}

static int rfc4106_setkey(struct crypto_aead *aead,

			  const u8 *key, unsigned int keylen)

{

	struct caam_ctx *ctx = crypto_aead_ctx(aead);

	struct device *jrdev = ctx->jrdev;

	int ret;

	if (keylen < 4)

		return -EINVAL;

#ifdef DEBUG

	print_hex_dump(KERN_ERR, "key in @" __stringify(__LINE__)": ",

		       DUMP_PREFIX_ADDRESS, 16, 4, key, keylen, 1);

#endif

	memcpy(ctx->key, key, keylen);

	/*

	 * The last four bytes of the key material are used as the salt value

	 * in the nonce. Update the AES key length.

	 */

	ctx->cdata.keylen = keylen - 4;

	dma_sync_single_for_device(jrdev, ctx->key_dma, ctx->cdata.keylen,

				   ctx->dir);

	ret = rfc4106_set_sh_desc(aead);

	if (ret)

		return ret;

	/* Now update the driver contexts with the new shared descriptor */

	if (ctx->drv_ctx[ENCRYPT]) {

		ret = caam_drv_ctx_update(ctx->drv_ctx[ENCRYPT],

					  ctx->sh_desc_enc);

		if (ret) {

			dev_err(jrdev, "driver enc context update failed\n");

			return ret;

		}

	}

	if (ctx->drv_ctx[DECRYPT]) {

		ret = caam_drv_ctx_update(ctx->drv_ctx[DECRYPT],

					  ctx->sh_desc_dec);

		if (ret) {

			dev_err(jrdev, "driver dec context update failed\n");

			return ret;

		}

	}

	return 0;

}

static int rfc4543_set_sh_desc(struct crypto_aead *aead)

{

	struct caam_ctx *ctx = crypto_aead_ctx(aead);

	unsigned int ivsize = crypto_aead_ivsize(aead);

	int rem_bytes = CAAM_DESC_BYTES_MAX - DESC_JOB_IO_LEN -

			ctx->cdata.keylen;

	if (!ctx->cdata.keylen || !ctx->authsize)

		return 0;

	ctx->cdata.key_virt = ctx->key;

	/*

	 * Job Descriptor and Shared Descriptor

	 * must fit into the 64-word Descriptor h/w Buffer

	 */

	if (rem_bytes >= DESC_QI_RFC4543_ENC_LEN) {

		ctx->cdata.key_inline = true;

	} else {

		ctx->cdata.key_inline = false;

		ctx->cdata.key_dma = ctx->key_dma;

	}

	cnstr_shdsc_rfc4543_encap(ctx->sh_desc_enc, &ctx->cdata, ivsize,

				  ctx->authsize, true);

	/*

	 * Job Descriptor and Shared Descriptor

	 * must fit into the 64-word Descriptor h/w Buffer

	 */

	if (rem_bytes >= DESC_QI_RFC4543_DEC_LEN) {

		ctx->cdata.key_inline = true;

	} else {

		ctx->cdata.key_inline = false;

		ctx->cdata.key_dma = ctx->key_dma;

	}

	cnstr_shdsc_rfc4543_decap(ctx->sh_desc_dec, &ctx->cdata, ivsize,

				  ctx->authsize, true);

	return 0;

}

static int rfc4543_setauthsize(struct crypto_aead *authenc,

			       unsigned int authsize)

{

	struct caam_ctx *ctx = crypto_aead_ctx(authenc);

	ctx->authsize = authsize;

	rfc4543_set_sh_desc(authenc);

	return 0;

}

static int rfc4543_setkey(struct crypto_aead *aead,

			  const u8 *key, unsigned int keylen)

{

	struct caam_ctx *ctx = crypto_aead_ctx(aead);

	struct device *jrdev = ctx->jrdev;

	int ret;

	if (keylen < 4)

		return -EINVAL;

#ifdef DEBUG

	print_hex_dump(KERN_ERR, "key in @" __stringify(__LINE__)": ",

		       DUMP_PREFIX_ADDRESS, 16, 4, key, keylen, 1);

#endif

	memcpy(ctx->key, key, keylen);

	/*

	 * The last four bytes of the key material are used as the salt value

	 * in the nonce. Update the AES key length.

	 */

	ctx->cdata.keylen = keylen - 4;

	dma_sync_single_for_device(jrdev, ctx->key_dma, ctx->cdata.keylen,

				   ctx->dir);

	ret = rfc4543_set_sh_desc(aead);

	if (ret)

		return ret;

	/* Now update the driver contexts with the new shared descriptor */

	if (ctx->drv_ctx[ENCRYPT]) {

		ret = caam_drv_ctx_update(ctx->drv_ctx[ENCRYPT],

					  ctx->sh_desc_enc);

		if (ret) {

			dev_err(jrdev, "driver enc context update failed\n");

			return ret;

		}

	}

	if (ctx->drv_ctx[DECRYPT]) {

		ret = caam_drv_ctx_update(ctx->drv_ctx[DECRYPT],

					  ctx->sh_desc_dec);

		if (ret) {

			dev_err(jrdev, "driver dec context update failed\n");

			return ret;

		}

	}

	return 0;

}

static int ablkcipher_setkey(struct crypto_ablkcipher *ablkcipher,

			     const u8 *key, unsigned int keylen)

{

	return aead_crypt(req, false);

}

static int ipsec_gcm_encrypt(struct aead_request *req)

{

	if (req->assoclen < 8)

		return -EINVAL;

	return aead_crypt(req, true);

}

static int ipsec_gcm_decrypt(struct aead_request *req)

{

	if (req->assoclen < 8)

		return -EINVAL;

	return aead_crypt(req, false);

}

static void ablkcipher_done(struct caam_drv_req *drv_req, u32 status)

{

	struct ablkcipher_edesc *edesc;

};

static struct caam_aead_alg driver_aeads[] = {

	{

		.aead = {

			.base = {

				.cra_name = "rfc4106(gcm(aes))",

				.cra_driver_name = "rfc4106-gcm-aes-caam-qi",

				.cra_blocksize = 1,

			},

			.setkey = rfc4106_setkey,

			.setauthsize = rfc4106_setauthsize,

			.encrypt = ipsec_gcm_encrypt,

			.decrypt = ipsec_gcm_decrypt,

			.ivsize = 8,

			.maxauthsize = AES_BLOCK_SIZE,

		},

		.caam = {

			.class1_alg_type = OP_ALG_ALGSEL_AES | OP_ALG_AAI_GCM,

		},

	},

	{

		.aead = {

			.base = {

				.cra_name = "rfc4543(gcm(aes))",

				.cra_driver_name = "rfc4543-gcm-aes-caam-qi",

				.cra_blocksize = 1,

			},

			.setkey = rfc4543_setkey,

			.setauthsize = rfc4543_setauthsize,

			.encrypt = ipsec_gcm_encrypt,

			.decrypt = ipsec_gcm_decrypt,

			.ivsize = 8,

			.maxauthsize = AES_BLOCK_SIZE,

		},

		.caam = {

			.class1_alg_type = OP_ALG_ALGSEL_AES | OP_ALG_AAI_GCM,

		},

	},

	/* Galois Counter Mode */

	{

		.aead = {

			.base = {

				.cra_name = "gcm(aes)",

				.cra_driver_name = "gcm-aes-caam-qi",

				.cra_blocksize = 1,

			},

			.setkey = gcm_setkey,

			.setauthsize = gcm_setauthsize,

			.encrypt = aead_encrypt,

			.decrypt = aead_decrypt,

			.ivsize = 12,

			.maxauthsize = AES_BLOCK_SIZE,

		},

		.caam = {

			.class1_alg_type = OP_ALG_ALGSEL_AES | OP_ALG_AAI_GCM,

		}

	},

	/* single-pass ipsec_esp descriptor */

	{

		.aead = {