aboutsummaryrefslogtreecommitdiff
path: root/drivers/s390/crypto
diff options
context:
space:
mode:
authorLinus Torvalds <torvalds@ppc970.osdl.org>2005-04-16 15:20:36 -0700
committerLinus Torvalds <torvalds@ppc970.osdl.org>2005-04-16 15:20:36 -0700
commit1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (patch)
tree0bba044c4ce775e45a88a51686b5d9f90697ea9d /drivers/s390/crypto
Linux-2.6.12-rc2v2.6.12-rc2
Initial git repository build. I'm not bothering with the full history, even though we have it. We can create a separate "historical" git archive of that later if we want to, and in the meantime it's about 3.2GB when imported into git - space that would just make the early git days unnecessarily complicated, when we don't have a lot of good infrastructure for it. Let it rip!
Diffstat (limited to 'drivers/s390/crypto')
-rw-r--r--drivers/s390/crypto/Makefile6
-rw-r--r--drivers/s390/crypto/z90common.h168
-rw-r--r--drivers/s390/crypto/z90crypt.h258
-rw-r--r--drivers/s390/crypto/z90hardware.c2243
-rw-r--r--drivers/s390/crypto/z90main.c3563
5 files changed, 6238 insertions, 0 deletions
diff --git a/drivers/s390/crypto/Makefile b/drivers/s390/crypto/Makefile
new file mode 100644
index 00000000000..15edebbead7
--- /dev/null
+++ b/drivers/s390/crypto/Makefile
@@ -0,0 +1,6 @@
+#
+# S/390 crypto devices
+#
+
+z90crypt-objs := z90main.o z90hardware.o
+obj-$(CONFIG_Z90CRYPT) += z90crypt.o
diff --git a/drivers/s390/crypto/z90common.h b/drivers/s390/crypto/z90common.h
new file mode 100644
index 00000000000..bcabac7a7c4
--- /dev/null
+++ b/drivers/s390/crypto/z90common.h
@@ -0,0 +1,168 @@
+/*
+ * linux/drivers/s390/crypto/z90common.h
+ *
+ * z90crypt 1.3.2
+ *
+ * Copyright (C) 2001, 2004 IBM Corporation
+ * Author(s): Robert Burroughs (burrough@us.ibm.com)
+ * Eric Rossman (edrossma@us.ibm.com)
+ *
+ * Hotplug & misc device support: Jochen Roehrig (roehrig@de.ibm.com)
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2, or (at your option)
+ * any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#ifndef _Z90COMMON_H_
+#define _Z90COMMON_H_
+
+#define VERSION_Z90COMMON_H "$Revision: 1.16 $"
+
+
+#define RESPBUFFSIZE 256
+#define PCI_FUNC_KEY_DECRYPT 0x5044
+#define PCI_FUNC_KEY_ENCRYPT 0x504B
+extern int ext_bitlens;
+
+enum devstat {
+ DEV_GONE,
+ DEV_ONLINE,
+ DEV_QUEUE_FULL,
+ DEV_EMPTY,
+ DEV_NO_WORK,
+ DEV_BAD_MESSAGE,
+ DEV_TSQ_EXCEPTION,
+ DEV_RSQ_EXCEPTION,
+ DEV_SEN_EXCEPTION,
+ DEV_REC_EXCEPTION
+};
+
+enum hdstat {
+ HD_NOT_THERE,
+ HD_BUSY,
+ HD_DECONFIGURED,
+ HD_CHECKSTOPPED,
+ HD_ONLINE,
+ HD_TSQ_EXCEPTION
+};
+
+#define Z90C_NO_DEVICES 1
+#define Z90C_AMBIGUOUS_DOMAIN 2
+#define Z90C_INCORRECT_DOMAIN 3
+#define ENOTINIT 4
+
+#define SEN_BUSY 7
+#define SEN_USER_ERROR 8
+#define SEN_QUEUE_FULL 11
+#define SEN_NOT_AVAIL 16
+#define SEN_PAD_ERROR 17
+#define SEN_RETRY 18
+#define SEN_RELEASED 24
+
+#define REC_EMPTY 4
+#define REC_BUSY 6
+#define REC_OPERAND_INV 8
+#define REC_OPERAND_SIZE 9
+#define REC_EVEN_MOD 10
+#define REC_NO_WORK 11
+#define REC_HARDWAR_ERR 12
+#define REC_NO_RESPONSE 13
+#define REC_RETRY_DEV 14
+#define REC_USER_GONE 15
+#define REC_BAD_MESSAGE 16
+#define REC_INVALID_PAD 17
+#define REC_USE_PCICA 18
+
+#define WRONG_DEVICE_TYPE 20
+
+#define REC_FATAL_ERROR 32
+#define SEN_FATAL_ERROR 33
+#define TSQ_FATAL_ERROR 34
+#define RSQ_FATAL_ERROR 35
+
+#define Z90CRYPT_NUM_TYPES 5
+#define PCICA 0
+#define PCICC 1
+#define PCIXCC_MCL2 2
+#define PCIXCC_MCL3 3
+#define CEX2C 4
+#define NILDEV -1
+#define ANYDEV -1
+#define PCIXCC_UNK -2
+
+enum hdevice_type {
+ PCICC_HW = 3,
+ PCICA_HW = 4,
+ PCIXCC_HW = 5,
+ OTHER_HW = 6,
+ CEX2C_HW = 7
+};
+
+struct CPRBX {
+ unsigned short cprb_len;
+ unsigned char cprb_ver_id;
+ unsigned char pad_000[3];
+ unsigned char func_id[2];
+ unsigned char cprb_flags[4];
+ unsigned int req_parml;
+ unsigned int req_datal;
+ unsigned int rpl_msgbl;
+ unsigned int rpld_parml;
+ unsigned int rpl_datal;
+ unsigned int rpld_datal;
+ unsigned int req_extbl;
+ unsigned char pad_001[4];
+ unsigned int rpld_extbl;
+ unsigned char req_parmb[16];
+ unsigned char req_datab[16];
+ unsigned char rpl_parmb[16];
+ unsigned char rpl_datab[16];
+ unsigned char req_extb[16];
+ unsigned char rpl_extb[16];
+ unsigned short ccp_rtcode;
+ unsigned short ccp_rscode;
+ unsigned int mac_data_len;
+ unsigned char logon_id[8];
+ unsigned char mac_value[8];
+ unsigned char mac_content_flgs;
+ unsigned char pad_002;
+ unsigned short domain;
+ unsigned char pad_003[12];
+ unsigned char pad_004[36];
+};
+
+#ifndef DEV_NAME
+#define DEV_NAME "z90crypt"
+#endif
+#define PRINTK(fmt, args...) \
+ printk(KERN_DEBUG DEV_NAME ": %s -> " fmt, __FUNCTION__ , ## args)
+#define PRINTKN(fmt, args...) \
+ printk(KERN_DEBUG DEV_NAME ": " fmt, ## args)
+#define PRINTKW(fmt, args...) \
+ printk(KERN_WARNING DEV_NAME ": %s -> " fmt, __FUNCTION__ , ## args)
+#define PRINTKC(fmt, args...) \
+ printk(KERN_CRIT DEV_NAME ": %s -> " fmt, __FUNCTION__ , ## args)
+
+#ifdef Z90CRYPT_DEBUG
+#define PDEBUG(fmt, args...) \
+ printk(KERN_DEBUG DEV_NAME ": %s -> " fmt, __FUNCTION__ , ## args)
+#else
+#define PDEBUG(fmt, args...) do {} while (0)
+#endif
+
+#define UMIN(a,b) ((a) < (b) ? (a) : (b))
+#define IS_EVEN(x) ((x) == (2 * ((x) / 2)))
+
+
+#endif
diff --git a/drivers/s390/crypto/z90crypt.h b/drivers/s390/crypto/z90crypt.h
new file mode 100644
index 00000000000..82a1d97001d
--- /dev/null
+++ b/drivers/s390/crypto/z90crypt.h
@@ -0,0 +1,258 @@
+/*
+ * linux/drivers/s390/crypto/z90crypt.h
+ *
+ * z90crypt 1.3.2
+ *
+ * Copyright (C) 2001, 2004 IBM Corporation
+ * Author(s): Robert Burroughs (burrough@us.ibm.com)
+ * Eric Rossman (edrossma@us.ibm.com)
+ *
+ * Hotplug & misc device support: Jochen Roehrig (roehrig@de.ibm.com)
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2, or (at your option)
+ * any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#ifndef _Z90CRYPT_H_
+#define _Z90CRYPT_H_
+
+#include <linux/ioctl.h>
+
+#define VERSION_Z90CRYPT_H "$Revision: 1.11 $"
+
+#define z90crypt_VERSION 1
+#define z90crypt_RELEASE 3 // 2 = PCIXCC, 3 = rewrite for coding standards
+#define z90crypt_VARIANT 2 // 2 = added PCIXCC MCL3 and CEX2C support
+
+/**
+ * If we are not using the sparse checker, __user has no use.
+ */
+#ifdef __CHECKER__
+# define __user __attribute__((noderef, address_space(1)))
+#else
+# define __user
+#endif
+
+/**
+ * struct ica_rsa_modexpo
+ *
+ * Requirements:
+ * - outputdatalength is at least as large as inputdatalength.
+ * - All key parts are right justified in their fields, padded on
+ * the left with zeroes.
+ * - length(b_key) = inputdatalength
+ * - length(n_modulus) = inputdatalength
+ */
+struct ica_rsa_modexpo {
+ char __user * inputdata;
+ unsigned int inputdatalength;
+ char __user * outputdata;
+ unsigned int outputdatalength;
+ char __user * b_key;
+ char __user * n_modulus;
+};
+
+/**
+ * struct ica_rsa_modexpo_crt
+ *
+ * Requirements:
+ * - inputdatalength is even.
+ * - outputdatalength is at least as large as inputdatalength.
+ * - All key parts are right justified in their fields, padded on
+ * the left with zeroes.
+ * - length(bp_key) = inputdatalength/2 + 8
+ * - length(bq_key) = inputdatalength/2
+ * - length(np_key) = inputdatalength/2 + 8
+ * - length(nq_key) = inputdatalength/2
+ * - length(u_mult_inv) = inputdatalength/2 + 8
+ */
+struct ica_rsa_modexpo_crt {
+ char __user * inputdata;
+ unsigned int inputdatalength;
+ char __user * outputdata;
+ unsigned int outputdatalength;
+ char __user * bp_key;
+ char __user * bq_key;
+ char __user * np_prime;
+ char __user * nq_prime;
+ char __user * u_mult_inv;
+};
+
+#define Z90_IOCTL_MAGIC 'z' // NOTE: Need to allocate from linux folks
+
+/**
+ * Interface notes:
+ *
+ * The ioctl()s which are implemented (along with relevant details)
+ * are:
+ *
+ * ICARSAMODEXPO
+ * Perform an RSA operation using a Modulus-Exponent pair
+ * This takes an ica_rsa_modexpo struct as its arg.
+ *
+ * NOTE: please refer to the comments preceding this structure
+ * for the implementation details for the contents of the
+ * block
+ *
+ * ICARSACRT
+ * Perform an RSA operation using a Chinese-Remainder Theorem key
+ * This takes an ica_rsa_modexpo_crt struct as its arg.
+ *
+ * NOTE: please refer to the comments preceding this structure
+ * for the implementation details for the contents of the
+ * block
+ *
+ * Z90STAT_TOTALCOUNT
+ * Return an integer count of all device types together.
+ *
+ * Z90STAT_PCICACOUNT
+ * Return an integer count of all PCICAs.
+ *
+ * Z90STAT_PCICCCOUNT
+ * Return an integer count of all PCICCs.
+ *
+ * Z90STAT_PCIXCCMCL2COUNT
+ * Return an integer count of all MCL2 PCIXCCs.
+ *
+ * Z90STAT_PCIXCCMCL3COUNT
+ * Return an integer count of all MCL3 PCIXCCs.
+ *
+ * Z90STAT_CEX2CCOUNT
+ * Return an integer count of all CEX2Cs.
+ *
+ * Z90STAT_REQUESTQ_COUNT
+ * Return an integer count of the number of entries waiting to be
+ * sent to a device.
+ *
+ * Z90STAT_PENDINGQ_COUNT
+ * Return an integer count of the number of entries sent to a
+ * device awaiting the reply.
+ *
+ * Z90STAT_TOTALOPEN_COUNT
+ * Return an integer count of the number of open file handles.
+ *
+ * Z90STAT_DOMAIN_INDEX
+ * Return the integer value of the Cryptographic Domain.
+ *
+ * Z90STAT_STATUS_MASK
+ * Return an 64 element array of unsigned chars for the status of
+ * all devices.
+ * 0x01: PCICA
+ * 0x02: PCICC
+ * 0x03: PCIXCC_MCL2
+ * 0x04: PCIXCC_MCL3
+ * 0x05: CEX2C
+ * 0x0d: device is disabled via the proc filesystem
+ *
+ * Z90STAT_QDEPTH_MASK
+ * Return an 64 element array of unsigned chars for the queue
+ * depth of all devices.
+ *
+ * Z90STAT_PERDEV_REQCNT
+ * Return an 64 element array of unsigned integers for the number
+ * of successfully completed requests per device since the device
+ * was detected and made available.
+ *
+ * ICAZ90STATUS (deprecated)
+ * Return some device driver status in a ica_z90_status struct
+ * This takes an ica_z90_status struct as its arg.
+ *
+ * NOTE: this ioctl() is deprecated, and has been replaced with
+ * single ioctl()s for each type of status being requested
+ *
+ * Z90STAT_PCIXCCCOUNT (deprecated)
+ * Return an integer count of all PCIXCCs (MCL2 + MCL3).
+ * This is DEPRECATED now that MCL3 PCIXCCs are treated differently from
+ * MCL2 PCIXCCs.
+ *
+ * Z90QUIESCE (not recommended)
+ * Quiesce the driver. This is intended to stop all new
+ * requests from being processed. Its use is NOT recommended,
+ * except in circumstances where there is no other way to stop
+ * callers from accessing the driver. Its original use was to
+ * allow the driver to be "drained" of work in preparation for
+ * a system shutdown.
+ *
+ * NOTE: once issued, this ban on new work cannot be undone
+ * except by unloading and reloading the driver.
+ */
+
+/**
+ * Supported ioctl calls
+ */
+#define ICARSAMODEXPO _IOC(_IOC_READ|_IOC_WRITE, Z90_IOCTL_MAGIC, 0x05, 0)
+#define ICARSACRT _IOC(_IOC_READ|_IOC_WRITE, Z90_IOCTL_MAGIC, 0x06, 0)
+
+/* DEPRECATED status calls (bound for removal at some point) */
+#define ICAZ90STATUS _IOR(Z90_IOCTL_MAGIC, 0x10, struct ica_z90_status)
+#define Z90STAT_PCIXCCCOUNT _IOR(Z90_IOCTL_MAGIC, 0x43, int)
+
+/* unrelated to ICA callers */
+#define Z90QUIESCE _IO(Z90_IOCTL_MAGIC, 0x11)
+
+/* New status calls */
+#define Z90STAT_TOTALCOUNT _IOR(Z90_IOCTL_MAGIC, 0x40, int)
+#define Z90STAT_PCICACOUNT _IOR(Z90_IOCTL_MAGIC, 0x41, int)
+#define Z90STAT_PCICCCOUNT _IOR(Z90_IOCTL_MAGIC, 0x42, int)
+#define Z90STAT_PCIXCCMCL2COUNT _IOR(Z90_IOCTL_MAGIC, 0x4b, int)
+#define Z90STAT_PCIXCCMCL3COUNT _IOR(Z90_IOCTL_MAGIC, 0x4c, int)
+#define Z90STAT_CEX2CCOUNT _IOR(Z90_IOCTL_MAGIC, 0x4d, int)
+#define Z90STAT_REQUESTQ_COUNT _IOR(Z90_IOCTL_MAGIC, 0x44, int)
+#define Z90STAT_PENDINGQ_COUNT _IOR(Z90_IOCTL_MAGIC, 0x45, int)
+#define Z90STAT_TOTALOPEN_COUNT _IOR(Z90_IOCTL_MAGIC, 0x46, int)
+#define Z90STAT_DOMAIN_INDEX _IOR(Z90_IOCTL_MAGIC, 0x47, int)
+#define Z90STAT_STATUS_MASK _IOR(Z90_IOCTL_MAGIC, 0x48, char[64])
+#define Z90STAT_QDEPTH_MASK _IOR(Z90_IOCTL_MAGIC, 0x49, char[64])
+#define Z90STAT_PERDEV_REQCNT _IOR(Z90_IOCTL_MAGIC, 0x4a, int[64])
+
+/**
+ * local errno definitions
+ */
+#define ENOBUFF 129 // filp->private_data->...>work_elem_p->buffer is NULL
+#define EWORKPEND 130 // user issues ioctl while another pending
+#define ERELEASED 131 // user released while ioctl pending
+#define EQUIESCE 132 // z90crypt quiescing (no more work allowed)
+#define ETIMEOUT 133 // request timed out
+#define EUNKNOWN 134 // some unrecognized error occured (retry may succeed)
+#define EGETBUFF 135 // Error getting buffer or hardware lacks capability
+ // (retry in software)
+
+/**
+ * DEPRECATED STRUCTURES
+ */
+
+/**
+ * This structure is DEPRECATED and the corresponding ioctl() has been
+ * replaced with individual ioctl()s for each piece of data!
+ * This structure will NOT survive past version 1.3.1, so switch to the
+ * new ioctl()s.
+ */
+#define MASK_LENGTH 64 // mask length
+struct ica_z90_status {
+ int totalcount;
+ int leedslitecount; // PCICA
+ int leeds2count; // PCICC
+ // int PCIXCCCount; is not in struct for backward compatibility
+ int requestqWaitCount;
+ int pendingqWaitCount;
+ int totalOpenCount;
+ int cryptoDomain;
+ // status: 0=not there, 1=PCICA, 2=PCICC, 3=PCIXCC_MCL2, 4=PCIXCC_MCL3,
+ // 5=CEX2C
+ unsigned char status[MASK_LENGTH];
+ // qdepth: # work elements waiting for each device
+ unsigned char qdepth[MASK_LENGTH];
+};
+
+#endif /* _Z90CRYPT_H_ */
diff --git a/drivers/s390/crypto/z90hardware.c b/drivers/s390/crypto/z90hardware.c
new file mode 100644
index 00000000000..beb6a5e0da2
--- /dev/null
+++ b/drivers/s390/crypto/z90hardware.c
@@ -0,0 +1,2243 @@
+/*
+ * linux/drivers/s390/crypto/z90hardware.c
+ *
+ * z90crypt 1.3.2
+ *
+ * Copyright (C) 2001, 2004 IBM Corporation
+ * Author(s): Robert Burroughs (burrough@us.ibm.com)
+ * Eric Rossman (edrossma@us.ibm.com)
+ *
+ * Hotplug & misc device support: Jochen Roehrig (roehrig@de.ibm.com)
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2, or (at your option)
+ * any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#include <asm/uaccess.h>
+#include <linux/compiler.h>
+#include <linux/delay.h>
+#include <linux/init.h>
+#include <linux/module.h>
+#include "z90crypt.h"
+#include "z90common.h"
+
+#define VERSION_Z90HARDWARE_C "$Revision: 1.33 $"
+
+char z90hardware_version[] __initdata =
+ "z90hardware.o (" VERSION_Z90HARDWARE_C "/"
+ VERSION_Z90COMMON_H "/" VERSION_Z90CRYPT_H ")";
+
+struct cca_token_hdr {
+ unsigned char token_identifier;
+ unsigned char version;
+ unsigned short token_length;
+ unsigned char reserved[4];
+};
+
+#define CCA_TKN_HDR_ID_EXT 0x1E
+
+struct cca_private_ext_ME_sec {
+ unsigned char section_identifier;
+ unsigned char version;
+ unsigned short section_length;
+ unsigned char private_key_hash[20];
+ unsigned char reserved1[4];
+ unsigned char key_format;
+ unsigned char reserved2;
+ unsigned char key_name_hash[20];
+ unsigned char key_use_flags[4];
+ unsigned char reserved3[6];
+ unsigned char reserved4[24];
+ unsigned char confounder[24];
+ unsigned char exponent[128];
+ unsigned char modulus[128];
+};
+
+#define CCA_PVT_USAGE_ALL 0x80
+
+struct cca_public_sec {
+ unsigned char section_identifier;
+ unsigned char version;
+ unsigned short section_length;
+ unsigned char reserved[2];
+ unsigned short exponent_len;
+ unsigned short modulus_bit_len;
+ unsigned short modulus_byte_len;
+ unsigned char exponent[3];
+};
+
+struct cca_private_ext_ME {
+ struct cca_token_hdr pvtMEHdr;
+ struct cca_private_ext_ME_sec pvtMESec;
+ struct cca_public_sec pubMESec;
+};
+
+struct cca_public_key {
+ struct cca_token_hdr pubHdr;
+ struct cca_public_sec pubSec;
+};
+
+struct cca_pvt_ext_CRT_sec {
+ unsigned char section_identifier;
+ unsigned char version;
+ unsigned short section_length;
+ unsigned char private_key_hash[20];
+ unsigned char reserved1[4];
+ unsigned char key_format;
+ unsigned char reserved2;
+ unsigned char key_name_hash[20];
+ unsigned char key_use_flags[4];
+ unsigned short p_len;
+ unsigned short q_len;
+ unsigned short dp_len;
+ unsigned short dq_len;
+ unsigned short u_len;
+ unsigned short mod_len;
+ unsigned char reserved3[4];
+ unsigned short pad_len;
+ unsigned char reserved4[52];
+ unsigned char confounder[8];
+};
+
+#define CCA_PVT_EXT_CRT_SEC_ID_PVT 0x08
+#define CCA_PVT_EXT_CRT_SEC_FMT_CL 0x40
+
+struct cca_private_ext_CRT {
+ struct cca_token_hdr pvtCrtHdr;
+ struct cca_pvt_ext_CRT_sec pvtCrtSec;
+ struct cca_public_sec pubCrtSec;
+};
+
+struct ap_status_word {
+ unsigned char q_stat_flags;
+ unsigned char response_code;
+ unsigned char reserved[2];
+};
+
+#define AP_Q_STATUS_EMPTY 0x80
+#define AP_Q_STATUS_REPLIES_WAITING 0x40
+#define AP_Q_STATUS_ARRAY_FULL 0x20
+
+#define AP_RESPONSE_NORMAL 0x00
+#define AP_RESPONSE_Q_NOT_AVAIL 0x01
+#define AP_RESPONSE_RESET_IN_PROGRESS 0x02
+#define AP_RESPONSE_DECONFIGURED 0x03
+#define AP_RESPONSE_CHECKSTOPPED 0x04
+#define AP_RESPONSE_BUSY 0x05
+#define AP_RESPONSE_Q_FULL 0x10
+#define AP_RESPONSE_NO_PENDING_REPLY 0x10
+#define AP_RESPONSE_INDEX_TOO_BIG 0x11
+#define AP_RESPONSE_NO_FIRST_PART 0x13
+#define AP_RESPONSE_MESSAGE_TOO_BIG 0x15
+
+#define AP_MAX_CDX_BITL 4
+#define AP_RQID_RESERVED_BITL 4
+#define SKIP_BITL (AP_MAX_CDX_BITL + AP_RQID_RESERVED_BITL)
+
+struct type4_hdr {
+ unsigned char reserved1;
+ unsigned char msg_type_code;
+ unsigned short msg_len;
+ unsigned char request_code;
+ unsigned char msg_fmt;
+ unsigned short reserved2;
+};
+
+#define TYPE4_TYPE_CODE 0x04
+#define TYPE4_REQU_CODE 0x40
+
+#define TYPE4_SME_LEN 0x0188
+#define TYPE4_LME_LEN 0x0308
+#define TYPE4_SCR_LEN 0x01E0
+#define TYPE4_LCR_LEN 0x03A0
+
+#define TYPE4_SME_FMT 0x00
+#define TYPE4_LME_FMT 0x10
+#define TYPE4_SCR_FMT 0x40
+#define TYPE4_LCR_FMT 0x50
+
+struct type4_sme {
+ struct type4_hdr header;
+ unsigned char message[128];
+ unsigned char exponent[128];
+ unsigned char modulus[128];
+};
+
+struct type4_lme {
+ struct type4_hdr header;
+ unsigned char message[256];
+ unsigned char exponent[256];
+ unsigned char modulus[256];
+};
+
+struct type4_scr {
+ struct type4_hdr header;
+ unsigned char message[128];
+ unsigned char dp[72];
+ unsigned char dq[64];
+ unsigned char p[72];
+ unsigned char q[64];
+ unsigned char u[72];
+};
+
+struct type4_lcr {
+ struct type4_hdr header;
+ unsigned char message[256];
+ unsigned char dp[136];
+ unsigned char dq[128];
+ unsigned char p[136];
+ unsigned char q[128];
+ unsigned char u[136];
+};
+
+union type4_msg {
+ struct type4_sme sme;
+ struct type4_lme lme;
+ struct type4_scr scr;
+ struct type4_lcr lcr;
+};
+
+struct type84_hdr {
+ unsigned char reserved1;
+ unsigned char code;
+ unsigned short len;
+ unsigned char reserved2[4];
+};
+
+#define TYPE84_RSP_CODE 0x84
+
+struct type6_hdr {
+ unsigned char reserved1;
+ unsigned char type;
+ unsigned char reserved2[2];
+ unsigned char right[4];
+ unsigned char reserved3[2];
+ unsigned char reserved4[2];
+ unsigned char apfs[4];
+ unsigned int offset1;
+ unsigned int offset2;
+ unsigned int offset3;
+ unsigned int offset4;
+ unsigned char agent_id[16];
+ unsigned char rqid[2];
+ unsigned char reserved5[2];
+ unsigned char function_code[2];
+ unsigned char reserved6[2];
+ unsigned int ToCardLen1;
+ unsigned int ToCardLen2;
+ unsigned int ToCardLen3;
+ unsigned int ToCardLen4;
+ unsigned int FromCardLen1;
+ unsigned int FromCardLen2;
+ unsigned int FromCardLen3;
+ unsigned int FromCardLen4;
+};
+
+struct CPRB {
+ unsigned char cprb_len[2];
+ unsigned char cprb_ver_id;
+ unsigned char pad_000;
+ unsigned char srpi_rtcode[4];
+ unsigned char srpi_verb;
+ unsigned char flags;
+ unsigned char func_id[2];
+ unsigned char checkpoint_flag;
+ unsigned char resv2;
+ unsigned char req_parml[2];
+ unsigned char req_parmp[4];
+ unsigned char req_datal[4];
+ unsigned char req_datap[4];
+ unsigned char rpl_parml[2];
+ unsigned char pad_001[2];
+ unsigned char rpl_parmp[4];
+ unsigned char rpl_datal[4];
+ unsigned char rpl_datap[4];
+ unsigned char ccp_rscode[2];
+ unsigned char ccp_rtcode[2];
+ unsigned char repd_parml[2];
+ unsigned char mac_data_len[2];
+ unsigned char repd_datal[4];
+ unsigned char req_pc[2];
+ unsigned char res_origin[8];
+ unsigned char mac_value[8];
+ unsigned char logon_id[8];
+ unsigned char usage_domain[2];
+ unsigned char resv3[18];
+ unsigned char svr_namel[2];
+ unsigned char svr_name[8];
+};
+
+struct type6_msg {
+ struct type6_hdr header;
+ struct CPRB CPRB;
+};
+
+union request_msg {
+ union type4_msg t4msg;
+ struct type6_msg t6msg;
+};
+
+struct request_msg_ext {
+ int q_nr;
+ unsigned char *psmid;
+ union request_msg reqMsg;
+};
+
+struct type82_hdr {
+ unsigned char reserved1;
+ unsigned char type;
+ unsigned char reserved2[2];
+ unsigned char reply_code;
+ unsigned char reserved3[3];
+};
+
+#define TYPE82_RSP_CODE 0x82
+
+#define REPLY_ERROR_MACHINE_FAILURE 0x10
+#define REPLY_ERROR_PREEMPT_FAILURE 0x12
+#define REPLY_ERROR_CHECKPT_FAILURE 0x14
+#define REPLY_ERROR_MESSAGE_TYPE 0x20
+#define REPLY_ERROR_INVALID_COMM_CD 0x21
+#define REPLY_ERROR_INVALID_MSG_LEN 0x23
+#define REPLY_ERROR_RESERVD_FIELD 0x24
+#define REPLY_ERROR_FORMAT_FIELD 0x29
+#define REPLY_ERROR_INVALID_COMMAND 0x30
+#define REPLY_ERROR_MALFORMED_MSG 0x40
+#define REPLY_ERROR_RESERVED_FIELDO 0x50
+#define REPLY_ERROR_WORD_ALIGNMENT 0x60
+#define REPLY_ERROR_MESSAGE_LENGTH 0x80
+#define REPLY_ERROR_OPERAND_INVALID 0x82
+#define REPLY_ERROR_OPERAND_SIZE 0x84
+#define REPLY_ERROR_EVEN_MOD_IN_OPND 0x85
+#define REPLY_ERROR_RESERVED_FIELD 0x88
+#define REPLY_ERROR_TRANSPORT_FAIL 0x90
+#define REPLY_ERROR_PACKET_TRUNCATED 0xA0
+#define REPLY_ERROR_ZERO_BUFFER_LEN 0xB0
+
+struct type86_hdr {
+ unsigned char reserved1;
+ unsigned char type;
+ unsigned char format;
+ unsigned char reserved2;
+ unsigned char reply_code;
+ unsigned char reserved3[3];
+};
+
+#define TYPE86_RSP_CODE 0x86
+#define TYPE86_FMT2 0x02
+
+struct type86_fmt2_msg {
+ struct type86_hdr hdr;
+ unsigned char reserved[4];
+ unsigned char apfs[4];
+ unsigned int count1;
+ unsigned int offset1;
+ unsigned int count2;
+ unsigned int offset2;
+ unsigned int count3;
+ unsigned int offset3;
+ unsigned int count4;
+ unsigned int offset4;
+};
+
+static struct type6_hdr static_type6_hdr = {
+ 0x00,
+ 0x06,
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ 0x00000058,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ {0x01,0x00,0x43,0x43,0x41,0x2D,0x41,0x50,
+ 0x50,0x4C,0x20,0x20,0x20,0x01,0x01,0x01},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x50,0x44},
+ {0x00,0x00},
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000
+};
+
+static struct type6_hdr static_type6_hdrX = {
+ 0x00,
+ 0x06,
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ 0x00000058,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ {0x43,0x41,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x50,0x44},
+ {0x00,0x00},
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000
+};
+
+static struct CPRB static_cprb = {
+ {0x70,0x00},
+ 0x41,
+ 0x00,
+ {0x00,0x00,0x00,0x00},
+ 0x00,
+ 0x00,
+ {0x54,0x32},
+ 0x01,
+ 0x00,
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00},
+ {0x08,0x00},
+ {0x49,0x43,0x53,0x46,0x20,0x20,0x20,0x20}
+};
+
+struct function_and_rules_block {
+ unsigned char function_code[2];
+ unsigned char ulen[2];
+ unsigned char only_rule[8];
+};
+
+static struct function_and_rules_block static_pkd_function_and_rules = {
+ {0x50,0x44},
+ {0x0A,0x00},
+ {'P','K','C','S','-','1','.','2'}
+};
+
+static struct function_and_rules_block static_pke_function_and_rules = {
+ {0x50,0x4B},
+ {0x0A,0x00},
+ {'P','K','C','S','-','1','.','2'}
+};
+
+struct T6_keyBlock_hdr {
+ unsigned char blen[2];
+ unsigned char ulen[2];
+ unsigned char flags[2];
+};
+
+static struct T6_keyBlock_hdr static_T6_keyBlock_hdr = {
+ {0x89,0x01},
+ {0x87,0x01},
+ {0x00}
+};
+
+static struct CPRBX static_cprbx = {
+ 0x00DC,
+ 0x02,
+ {0x00,0x00,0x00},
+ {0x54,0x32},
+ {0x00,0x00,0x00,0x00},
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ 0x00000000,
+ {0x00,0x00,0x00,0x00},
+ 0x00000000,
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ 0x0000,
+ 0x0000,
+ 0x00000000,
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ 0x00,
+ 0x00,
+ 0x0000,
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00}
+};
+
+static struct function_and_rules_block static_pkd_function_and_rulesX_MCL2 = {
+ {0x50,0x44},
+ {0x00,0x0A},
+ {'P','K','C','S','-','1','.','2'}
+};
+
+static struct function_and_rules_block static_pke_function_and_rulesX_MCL2 = {
+ {0x50,0x4B},
+ {0x00,0x0A},
+ {'Z','E','R','O','-','P','A','D'}
+};
+
+static struct function_and_rules_block static_pkd_function_and_rulesX = {
+ {0x50,0x44},
+ {0x00,0x0A},
+ {'Z','E','R','O','-','P','A','D'}
+};
+
+static struct function_and_rules_block static_pke_function_and_rulesX = {
+ {0x50,0x4B},
+ {0x00,0x0A},
+ {'M','R','P',' ',' ',' ',' ',' '}
+};
+
+struct T6_keyBlock_hdrX {
+ unsigned short blen;
+ unsigned short ulen;
+ unsigned char flags[2];
+};
+
+static unsigned char static_pad[256] = {
+0x1B,0x7B,0x5D,0xB5,0x75,0x01,0x3D,0xFD,0x8D,0xD1,0xC7,0x03,0x2D,0x09,0x23,0x57,
+0x89,0x49,0xB9,0x3F,0xBB,0x99,0x41,0x5B,0x75,0x21,0x7B,0x9D,0x3B,0x6B,0x51,0x39,
+0xBB,0x0D,0x35,0xB9,0x89,0x0F,0x93,0xA5,0x0B,0x47,0xF1,0xD3,0xBB,0xCB,0xF1,0x9D,
+0x23,0x73,0x71,0xFF,0xF3,0xF5,0x45,0xFB,0x61,0x29,0x23,0xFD,0xF1,0x29,0x3F,0x7F,
+0x17,0xB7,0x1B,0xA9,0x19,0xBD,0x57,0xA9,0xD7,0x95,0xA3,0xCB,0xED,0x1D,0xDB,0x45,
+0x7D,0x11,0xD1,0x51,0x1B,0xED,0x71,0xE9,0xB1,0xD1,0xAB,0xAB,0x21,0x2B,0x1B,0x9F,
+0x3B,0x9F,0xF7,0xF7,0xBD,0x63,0xEB,0xAD,0xDF,0xB3,0x6F,0x5B,0xDB,0x8D,0xA9,0x5D,
+0xE3,0x7D,0x77,0x49,0x47,0xF5,0xA7,0xFD,0xAB,0x2F,0x27,0x35,0x77,0xD3,0x49,0xC9,
+0x09,0xEB,0xB1,0xF9,0xBF,0x4B,0xCB,0x2B,0xEB,0xEB,0x05,0xFF,0x7D,0xC7,0x91,0x8B,
+0x09,0x83,0xB9,0xB9,0x69,0x33,0x39,0x6B,0x79,0x75,0x19,0xBF,0xBB,0x07,0x1D,0xBD,
+0x29,0xBF,0x39,0x95,0x93,0x1D,0x35,0xC7,0xC9,0x4D,0xE5,0x97,0x0B,0x43,0x9B,0xF1,
+0x16,0x93,0x03,0x1F,0xA5,0xFB,0xDB,0xF3,0x27,0x4F,0x27,0x61,0x05,0x1F,0xB9,0x23,
+0x2F,0xC3,0x81,0xA9,0x23,0x71,0x55,0x55,0xEB,0xED,0x41,0xE5,0xF3,0x11,0xF1,0x43,
+0x69,0x03,0xBD,0x0B,0x37,0x0F,0x51,0x8F,0x0B,0xB5,0x89,0x5B,0x67,0xA9,0xD9,0x4F,
+0x01,0xF9,0x21,0x77,0x37,0x73,0x79,0xC5,0x7F,0x51,0xC1,0xCF,0x97,0xA1,0x75,0xAD,
+0x35,0x9D,0xD3,0xD3,0xA7,0x9D,0x5D,0x41,0x6F,0x65,0x1B,0xCF,0xA9,0x87,0x91,0x09
+};
+
+static struct cca_private_ext_ME static_pvt_me_key = {
+ {
+ 0x1E,
+ 0x00,
+ 0x0183,
+ {0x00,0x00,0x00,0x00}
+ },
+
+ {
+ 0x02,
+ 0x00,
+ 0x016C,
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00},
+ 0x00,
+ 0x00,
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00},
+ {0x80,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00},
+ {0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+ 0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00}
+ },
+
+ {
+ 0x04,
+ 0x00,
+ 0x000F,
+ {0x00,0x00},
+ 0x0003,
+ 0x0000,
+ 0x0000,
+ {0x01,0x00,0x01}
+ }
+};
+
+static struct cca_public_key static_public_key = {
+ {
+ 0x1E,
+ 0x00,
+ 0x0000,
+ {0x00,0x00,0x00,0x00}
+ },
+
+ {
+ 0x04,
+ 0x00,
+ 0x0000,
+ {0x00,0x00},
+ 0x0000,
+ 0x0000,
+ 0x0000,
+ {0x01,0x00,0x01}
+ }
+};
+
+#define FIXED_TYPE6_ME_LEN 0x0000025F
+
+#define FIXED_TYPE6_ME_EN_LEN 0x000000F0
+
+#define FIXED_TYPE6_ME_LENX 0x000002CB
+
+#define FIXED_TYPE6_ME_EN_LENX 0x0000015C
+
+static struct cca_public_sec static_cca_pub_sec = {
+ 0x04,
+ 0x00,
+ 0x000f,
+ {0x00,0x00},
+ 0x0003,
+ 0x0000,
+ 0x0000,
+ {0x01,0x00,0x01}
+};
+
+#define FIXED_TYPE6_CR_LEN 0x00000177
+
+#define FIXED_TYPE6_CR_LENX 0x000001E3
+
+#define MAX_RESPONSE_SIZE 0x00000710
+
+#define MAX_RESPONSEX_SIZE 0x0000077C
+
+#define RESPONSE_CPRB_SIZE 0x000006B8
+#define RESPONSE_CPRBX_SIZE 0x00000724
+
+#define CALLER_HEADER 12
+
+static unsigned char static_PKE_function_code[2] = {0x50, 0x4B};
+
+static inline int
+testq(int q_nr, int *q_depth, int *dev_type, struct ap_status_word *stat)
+{
+ int ccode;
+
+ asm volatile
+#ifdef __s390x__
+ (" llgfr 0,%4 \n"
+ " slgr 1,1 \n"
+ " lgr 2,1 \n"
+ "0: .long 0xb2af0000 \n"
+ "1: ipm %0 \n"
+ " srl %0,28 \n"
+ " iihh %0,0 \n"
+ " iihl %0,0 \n"
+ " lgr %1,1 \n"
+ " lgr %3,2 \n"
+ " srl %3,24 \n"
+ " sll 2,24 \n"
+ " srl 2,24 \n"
+ " lgr %2,2 \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h5 \n"
+ " jg 2b \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 8 \n"
+ " .quad 0b,3b \n"
+ " .quad 1b,3b \n"
+ ".previous"
+ :"=d" (ccode),"=d" (*stat),"=d" (*q_depth), "=d" (*dev_type)
+ :"d" (q_nr), "K" (DEV_TSQ_EXCEPTION)
+ :"cc","0","1","2","memory");
+#else
+ (" lr 0,%4 \n"
+ " slr 1,1 \n"
+ " lr 2,1 \n"
+ "0: .long 0xb2af0000 \n"
+ "1: ipm %0 \n"
+ " srl %0,28 \n"
+ " lr %1,1 \n"
+ " lr %3,2 \n"
+ " srl %3,24 \n"
+ " sll 2,24 \n"
+ " srl 2,24 \n"
+ " lr %2,2 \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h5 \n"
+ " bras 1,4f \n"
+ " .long 2b \n"
+ "4: \n"
+ " l 1,0(1) \n"
+ " br 1 \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 4 \n"
+ " .long 0b,3b \n"
+ " .long 1b,3b \n"
+ ".previous"
+ :"=d" (ccode),"=d" (*stat),"=d" (*q_depth), "=d" (*dev_type)
+ :"d" (q_nr), "K" (DEV_TSQ_EXCEPTION)
+ :"cc","0","1","2","memory");
+#endif
+ return ccode;
+}
+
+static inline int
+resetq(int q_nr, struct ap_status_word *stat_p)
+{
+ int ccode;
+
+ asm volatile
+#ifdef __s390x__
+ (" llgfr 0,%2 \n"
+ " lghi 1,1 \n"
+ " sll 1,24 \n"
+ " or 0,1 \n"
+ " slgr 1,1 \n"
+ " lgr 2,1 \n"
+ "0: .long 0xb2af0000 \n"
+ "1: ipm %0 \n"
+ " srl %0,28 \n"
+ " iihh %0,0 \n"
+ " iihl %0,0 \n"
+ " lgr %1,1 \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h3 \n"
+ " jg 2b \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 8 \n"
+ " .quad 0b,3b \n"
+ " .quad 1b,3b \n"
+ ".previous"
+ :"=d" (ccode),"=d" (*stat_p)
+ :"d" (q_nr), "K" (DEV_RSQ_EXCEPTION)
+ :"cc","0","1","2","memory");
+#else
+ (" lr 0,%2 \n"
+ " lhi 1,1 \n"
+ " sll 1,24 \n"
+ " or 0,1 \n"
+ " slr 1,1 \n"
+ " lr 2,1 \n"
+ "0: .long 0xb2af0000 \n"
+ "1: ipm %0 \n"
+ " srl %0,28 \n"
+ " lr %1,1 \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h3 \n"
+ " bras 1,4f \n"
+ " .long 2b \n"
+ "4: \n"
+ " l 1,0(1) \n"
+ " br 1 \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 4 \n"
+ " .long 0b,3b \n"
+ " .long 1b,3b \n"
+ ".previous"
+ :"=d" (ccode),"=d" (*stat_p)
+ :"d" (q_nr), "K" (DEV_RSQ_EXCEPTION)
+ :"cc","0","1","2","memory");
+#endif
+ return ccode;
+}
+
+static inline int
+sen(int msg_len, unsigned char *msg_ext, struct ap_status_word *stat)
+{
+ int ccode;
+
+ asm volatile
+#ifdef __s390x__
+ (" lgr 6,%3 \n"
+ " llgfr 7,%2 \n"
+ " llgt 0,0(6) \n"
+ " lghi 1,64 \n"
+ " sll 1,24 \n"
+ " or 0,1 \n"
+ " la 6,4(6) \n"
+ " llgt 2,0(6) \n"
+ " llgt 3,4(6) \n"
+ " la 6,8(6) \n"
+ " slr 1,1 \n"
+ "0: .long 0xb2ad0026 \n"
+ "1: brc 2,0b \n"
+ " ipm %0 \n"
+ " srl %0,28 \n"
+ " iihh %0,0 \n"
+ " iihl %0,0 \n"
+ " lgr %1,1 \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h4 \n"
+ " jg 2b \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 8 \n"
+ " .quad 0b,3b \n"
+ " .quad 1b,3b \n"
+ ".previous"
+ :"=d" (ccode),"=d" (*stat)
+ :"d" (msg_len),"a" (msg_ext), "K" (DEV_SEN_EXCEPTION)
+ :"cc","0","1","2","3","6","7","memory");
+#else
+ (" lr 6,%3 \n"
+ " lr 7,%2 \n"
+ " l 0,0(6) \n"
+ " lhi 1,64 \n"
+ " sll 1,24 \n"
+ " or 0,1 \n"
+ " la 6,4(6) \n"
+ " l 2,0(6) \n"
+ " l 3,4(6) \n"
+ " la 6,8(6) \n"
+ " slr 1,1 \n"
+ "0: .long 0xb2ad0026 \n"
+ "1: brc 2,0b \n"
+ " ipm %0 \n"
+ " srl %0,28 \n"
+ " lr %1,1 \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h4 \n"
+ " bras 1,4f \n"
+ " .long 2b \n"
+ "4: \n"
+ " l 1,0(1) \n"
+ " br 1 \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 4 \n"
+ " .long 0b,3b \n"
+ " .long 1b,3b \n"
+ ".previous"
+ :"=d" (ccode),"=d" (*stat)
+ :"d" (msg_len),"a" (msg_ext), "K" (DEV_SEN_EXCEPTION)
+ :"cc","0","1","2","3","6","7","memory");
+#endif
+ return ccode;
+}
+
+static inline int
+rec(int q_nr, int buff_l, unsigned char *rsp, unsigned char *id,
+ struct ap_status_word *st)
+{
+ int ccode;
+
+ asm volatile
+#ifdef __s390x__
+ (" llgfr 0,%2 \n"
+ " lgr 3,%4 \n"
+ " lgr 6,%3 \n"
+ " llgfr 7,%5 \n"
+ " lghi 1,128 \n"
+ " sll 1,24 \n"
+ " or 0,1 \n"
+ " slgr 1,1 \n"
+ " lgr 2,1 \n"
+ " lgr 4,1 \n"
+ " lgr 5,1 \n"
+ "0: .long 0xb2ae0046 \n"
+ "1: brc 2,0b \n"
+ " brc 4,0b \n"
+ " ipm %0 \n"
+ " srl %0,28 \n"
+ " iihh %0,0 \n"
+ " iihl %0,0 \n"
+ " lgr %1,1 \n"
+ " st 4,0(3) \n"
+ " st 5,4(3) \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h6 \n"
+ " jg 2b \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 8 \n"
+ " .quad 0b,3b \n"
+ " .quad 1b,3b \n"
+ ".previous"
+ :"=d"(ccode),"=d"(*st)
+ :"d" (q_nr), "d" (rsp), "d" (id), "d" (buff_l), "K" (DEV_REC_EXCEPTION)
+ :"cc","0","1","2","3","4","5","6","7","memory");
+#else
+ (" lr 0,%2 \n"
+ " lr 3,%4 \n"
+ " lr 6,%3 \n"
+ " lr 7,%5 \n"
+ " lhi 1,128 \n"
+ " sll 1,24 \n"
+ " or 0,1 \n"
+ " slr 1,1 \n"
+ " lr 2,1 \n"
+ " lr 4,1 \n"
+ " lr 5,1 \n"
+ "0: .long 0xb2ae0046 \n"
+ "1: brc 2,0b \n"
+ " brc 4,0b \n"
+ " ipm %0 \n"
+ " srl %0,28 \n"
+ " lr %1,1 \n"
+ " st 4,0(3) \n"
+ " st 5,4(3) \n"
+ "2: \n"
+ ".section .fixup,\"ax\" \n"
+ "3: \n"
+ " lhi %0,%h6 \n"
+ " bras 1,4f \n"
+ " .long 2b \n"
+ "4: \n"
+ " l 1,0(1) \n"
+ " br 1 \n"
+ ".previous \n"
+ ".section __ex_table,\"a\" \n"
+ " .align 4 \n"
+ " .long 0b,3b \n"
+ " .long 1b,3b \n"
+ ".previous"
+ :"=d"(ccode),"=d"(*st)
+ :"d" (q_nr), "d" (rsp), "d" (id), "d" (buff_l), "K" (DEV_REC_EXCEPTION)
+ :"cc","0","1","2","3","4","5","6","7","memory");
+#endif
+ return ccode;
+}
+
+static inline void
+itoLe2(int *i_p, unsigned char *lechars)
+{
+ *lechars = *((unsigned char *) i_p + sizeof(int) - 1);
+ *(lechars + 1) = *((unsigned char *) i_p + sizeof(int) - 2);
+}
+
+static inline void
+le2toI(unsigned char *lechars, int *i_p)
+{
+ unsigned char *ic_p;
+ *i_p = 0;
+ ic_p = (unsigned char *) i_p;
+ *(ic_p + 2) = *(lechars + 1);
+ *(ic_p + 3) = *(lechars);
+}
+
+static inline int
+is_empty(unsigned char *ptr, int len)
+{
+ return !memcmp(ptr, (unsigned char *) &static_pvt_me_key+60, len);
+}
+
+enum hdstat
+query_online(int deviceNr, int cdx, int resetNr, int *q_depth, int *dev_type)
+{
+ int q_nr, i, t_depth, t_dev_type;
+ enum devstat ccode;
+ struct ap_status_word stat_word;
+ enum hdstat stat;
+ int break_out;
+
+ q_nr = (deviceNr << SKIP_BITL) + cdx;
+ stat = HD_BUSY;
+ ccode = testq(q_nr, &t_depth, &t_dev_type, &stat_word);
+ PDEBUG("ccode %d response_code %02X\n", ccode, stat_word.response_code);
+ break_out = 0;
+ for (i = 0; i < resetNr; i++) {
+ if (ccode > 3) {
+ PRINTKC("Exception testing device %d\n", i);
+ return HD_TSQ_EXCEPTION;
+ }
+ switch (ccode) {
+ case 0:
+ PDEBUG("t_dev_type %d\n", t_dev_type);
+ break_out = 1;
+ stat = HD_ONLINE;
+ *q_depth = t_depth + 1;
+ switch (t_dev_type) {
+ case OTHER_HW:
+ stat = HD_NOT_THERE;
+ *dev_type = NILDEV;
+ break;
+ case PCICA_HW:
+ *dev_type = PCICA;
+ break;
+ case PCICC_HW:
+ *dev_type = PCICC;
+ break;
+ case PCIXCC_HW:
+ *dev_type = PCIXCC_UNK;
+ break;
+ case CEX2C_HW:
+ *dev_type = CEX2C;
+ break;
+ default:
+ *dev_type = NILDEV;
+ break;
+ }
+ PDEBUG("available device %d: Q depth = %d, dev "
+ "type = %d, stat = %02X%02X%02X%02X\n",
+ deviceNr, *q_depth, *dev_type,
+ stat_word.q_stat_flags,
+ stat_word.response_code,
+ stat_word.reserved[0],
+ stat_word.reserved[1]);
+ break;
+ case 3:
+ switch (stat_word.response_code) {
+ case AP_RESPONSE_NORMAL:
+ stat = HD_ONLINE;
+ break_out = 1;
+ *q_depth = t_depth + 1;
+ *dev_type = t_dev_type;
+ PDEBUG("cc3, available device "
+ "%d: Q depth = %d, dev "
+ "type = %d, stat = "
+ "%02X%02X%02X%02X\n",
+ deviceNr, *q_depth,
+ *dev_type,
+ stat_word.q_stat_flags,
+ stat_word.response_code,
+ stat_word.reserved[0],
+ stat_word.reserved[1]);
+ break;
+ case AP_RESPONSE_Q_NOT_AVAIL:
+ stat = HD_NOT_THERE;
+ break_out = 1;
+ break;
+ case AP_RESPONSE_RESET_IN_PROGRESS:
+ PDEBUG("device %d in reset\n",
+ deviceNr);
+ break;
+ case AP_RESPONSE_DECONFIGURED:
+ stat = HD_DECONFIGURED;
+ break_out = 1;
+ break;
+ case AP_RESPONSE_CHECKSTOPPED:
+ stat = HD_CHECKSTOPPED;
+ break_out = 1;
+ break;
+ case AP_RESPONSE_BUSY:
+ PDEBUG("device %d busy\n",
+ deviceNr);
+ break;
+ default:
+ break;
+ }
+ break;
+ default:
+ stat = HD_NOT_THERE;
+ break_out = 1;
+ break;
+ }
+ if (break_out)
+ break;
+
+ udelay(5);
+
+ ccode = testq(q_nr, &t_depth, &t_dev_type, &stat_word);
+ }
+ return stat;
+}
+
+enum devstat
+reset_device(int deviceNr, int cdx, int resetNr)
+{
+ int q_nr, ccode = 0, dummy_qdepth, dummy_devType, i;
+ struct ap_status_word stat_word;
+ enum devstat stat;
+ int break_out;
+
+ q_nr = (deviceNr << SKIP_BITL) + cdx;
+ stat = DEV_GONE;
+ ccode = resetq(q_nr, &stat_word);
+ if (ccode > 3)
+ return DEV_RSQ_EXCEPTION;
+
+ break_out = 0;
+ for (i = 0; i < resetNr; i++) {
+ switch (ccode) {
+ case 0:
+ stat = DEV_ONLINE;
+ if (stat_word.q_stat_flags & AP_Q_STATUS_EMPTY)
+ break_out = 1;
+ break;
+ case 3:
+ switch (stat_word.response_code) {
+ case AP_RESPONSE_NORMAL:
+ stat = DEV_ONLINE;
+ if (stat_word.q_stat_flags & AP_Q_STATUS_EMPTY)
+ break_out = 1;
+ break;
+ case AP_RESPONSE_Q_NOT_AVAIL:
+ case AP_RESPONSE_DECONFIGURED:
+ case AP_RESPONSE_CHECKSTOPPED:
+ stat = DEV_GONE;
+ break_out = 1;
+ break;
+ case AP_RESPONSE_RESET_IN_PROGRESS:
+ case AP_RESPONSE_BUSY:
+ default:
+ break;
+ }
+ break;
+ default:
+ stat = DEV_GONE;
+ break_out = 1;
+ break;
+ }
+ if (break_out == 1)
+ break;
+ udelay(5);
+
+ ccode = testq(q_nr, &dummy_qdepth, &dummy_devType, &stat_word);
+ if (ccode > 3) {
+ stat = DEV_TSQ_EXCEPTION;
+ break;
+ }
+ }
+ PDEBUG("Number of testq's needed for reset: %d\n", i);
+
+ if (i >= resetNr) {
+ stat = DEV_GONE;
+ }
+
+ return stat;
+}
+
+#ifdef DEBUG_HYDRA_MSGS
+static inline void
+print_buffer(unsigned char *buffer, int bufflen)
+{
+ int i;
+ for (i = 0; i < bufflen; i += 16) {
+ PRINTK("%04X: %02X%02X%02X%02X %02X%02X%02X%02X "
+ "%02X%02X%02X%02X %02X%02X%02X%02X\n", i,
+ buffer[i+0], buffer[i+1], buffer[i+2], buffer[i+3],
+ buffer[i+4], buffer[i+5], buffer[i+6], buffer[i+7],
+ buffer[i+8], buffer[i+9], buffer[i+10], buffer[i+11],
+ buffer[i+12], buffer[i+13], buffer[i+14], buffer[i+15]);
+ }
+}
+#endif
+
+enum devstat
+send_to_AP(int dev_nr, int cdx, int msg_len, unsigned char *msg_ext)
+{
+ struct ap_status_word stat_word;
+ enum devstat stat;
+ int ccode;
+
+ ((struct request_msg_ext *) msg_ext)->q_nr =
+ (dev_nr << SKIP_BITL) + cdx;
+ PDEBUG("msg_len passed to sen: %d\n", msg_len);
+ PDEBUG("q number passed to sen: %02x%02x%02x%02x\n",
+ msg_ext[0], msg_ext[1], msg_ext[2], msg_ext[3]);
+ stat = DEV_GONE;
+
+#ifdef DEBUG_HYDRA_MSGS
+ PRINTK("Request header: %02X%02X%02X%02X %02X%02X%02X%02X "
+ "%02X%02X%02X%02X\n",
+ msg_ext[0], msg_ext[1], msg_ext[2], msg_ext[3],
+ msg_ext[4], msg_ext[5], msg_ext[6], msg_ext[7],
+ msg_ext[8], msg_ext[9], msg_ext[10], msg_ext[11]);
+ print_buffer(msg_ext+CALLER_HEADER, msg_len);
+#endif
+
+ ccode = sen(msg_len, msg_ext, &stat_word);
+ if (ccode > 3)
+ return DEV_SEN_EXCEPTION;
+
+ PDEBUG("nq cc: %u, st: %02x%02x%02x%02x\n",
+ ccode, stat_word.q_stat_flags, stat_word.response_code,
+ stat_word.reserved[0], stat_word.reserved[1]);
+ switch (ccode) {
+ case 0:
+ stat = DEV_ONLINE;
+ break;
+ case 1:
+ stat = DEV_GONE;
+ break;
+ case 3:
+ switch (stat_word.response_code) {
+ case AP_RESPONSE_NORMAL:
+ stat = DEV_ONLINE;
+ break;
+ case AP_RESPONSE_Q_FULL:
+ stat = DEV_QUEUE_FULL;
+ break;
+ default:
+ stat = DEV_GONE;
+ break;
+ }
+ break;
+ default:
+ stat = DEV_GONE;
+ break;
+ }
+
+ return stat;
+}
+
+enum devstat
+receive_from_AP(int dev_nr, int cdx, int resplen, unsigned char *resp,
+ unsigned char *psmid)
+{
+ int ccode;
+ struct ap_status_word stat_word;
+ enum devstat stat;
+
+ memset(resp, 0x00, 8);
+
+ ccode = rec((dev_nr << SKIP_BITL) + cdx, resplen, resp, psmid,
+ &stat_word);
+ if (ccode > 3)
+ return DEV_REC_EXCEPTION;
+
+ PDEBUG("dq cc: %u, st: %02x%02x%02x%02x\n",
+ ccode, stat_word.q_stat_flags, stat_word.response_code,
+ stat_word.reserved[0], stat_word.reserved[1]);
+
+ stat = DEV_GONE;
+ switch (ccode) {
+ case 0:
+ stat = DEV_ONLINE;
+#ifdef DEBUG_HYDRA_MSGS
+ print_buffer(resp, resplen);
+#endif
+ break;
+ case 3:
+ switch (stat_word.response_code) {
+ case AP_RESPONSE_NORMAL:
+ stat = DEV_ONLINE;
+ break;
+ case AP_RESPONSE_NO_PENDING_REPLY:
+ if (stat_word.q_stat_flags & AP_Q_STATUS_EMPTY)
+ stat = DEV_EMPTY;
+ else
+ stat = DEV_NO_WORK;
+ break;
+ case AP_RESPONSE_INDEX_TOO_BIG:
+ case AP_RESPONSE_NO_FIRST_PART:
+ case AP_RESPONSE_MESSAGE_TOO_BIG:
+ stat = DEV_BAD_MESSAGE;
+ break;
+ default:
+ break;
+ }
+ break;
+ default:
+ break;
+ }
+
+ return stat;
+}
+
+static inline int
+pad_msg(unsigned char *buffer, int totalLength, int msgLength)
+{
+ int pad_len;
+
+ for (pad_len = 0; pad_len < (totalLength - msgLength); pad_len++)
+ if (buffer[pad_len] != 0x00)
+ break;
+ pad_len -= 3;
+ if (pad_len < 8)
+ return SEN_PAD_ERROR;
+
+ buffer[0] = 0x00;
+ buffer[1] = 0x02;
+
+ memcpy(buffer+2, static_pad, pad_len);
+
+ buffer[pad_len + 2] = 0x00;
+
+ return 0;
+}
+
+static inline int
+is_common_public_key(unsigned char *key, int len)
+{
+ int i;
+
+ for (i = 0; i < len; i++)
+ if (key[i])
+ break;
+ key += i;
+ len -= i;
+ if (((len == 1) && (key[0] == 3)) ||
+ ((len == 3) && (key[0] == 1) && (key[1] == 0) && (key[2] == 1)))
+ return 1;
+
+ return 0;
+}
+
+static int
+ICAMEX_msg_to_type4MEX_msg(struct ica_rsa_modexpo *icaMex_p, int *z90cMsg_l_p,
+ union type4_msg *z90cMsg_p)
+{
+ int mod_len, msg_size, mod_tgt_len, exp_tgt_len, inp_tgt_len;
+ unsigned char *mod_tgt, *exp_tgt, *inp_tgt;
+ union type4_msg *tmp_type4_msg;
+
+ mod_len = icaMex_p->inputdatalength;
+
+ msg_size = ((mod_len <= 128) ? TYPE4_SME_LEN : TYPE4_LME_LEN) +
+ CALLER_HEADER;
+
+ memset(z90cMsg_p, 0, msg_size);
+
+ tmp_type4_msg = (union type4_msg *)
+ ((unsigned char *) z90cMsg_p + CALLER_HEADER);
+
+ tmp_type4_msg->sme.header.msg_type_code = TYPE4_TYPE_CODE;
+ tmp_type4_msg->sme.header.request_code = TYPE4_REQU_CODE;
+
+ if (mod_len <= 128) {
+ tmp_type4_msg->sme.header.msg_fmt = TYPE4_SME_FMT;
+ tmp_type4_msg->sme.header.msg_len = TYPE4_SME_LEN;
+ mod_tgt = tmp_type4_msg->sme.modulus;
+ mod_tgt_len = sizeof(tmp_type4_msg->sme.modulus);
+ exp_tgt = tmp_type4_msg->sme.exponent;
+ exp_tgt_len = sizeof(tmp_type4_msg->sme.exponent);
+ inp_tgt = tmp_type4_msg->sme.message;
+ inp_tgt_len = sizeof(tmp_type4_msg->sme.message);
+ } else {
+ tmp_type4_msg->lme.header.msg_fmt = TYPE4_LME_FMT;
+ tmp_type4_msg->lme.header.msg_len = TYPE4_LME_LEN;
+ mod_tgt = tmp_type4_msg->lme.modulus;
+ mod_tgt_len = sizeof(tmp_type4_msg->lme.modulus);
+ exp_tgt = tmp_type4_msg->lme.exponent;
+ exp_tgt_len = sizeof(tmp_type4_msg->lme.exponent);
+ inp_tgt = tmp_type4_msg->lme.message;
+ inp_tgt_len = sizeof(tmp_type4_msg->lme.message);
+ }
+
+ mod_tgt += (mod_tgt_len - mod_len);
+ if (copy_from_user(mod_tgt, icaMex_p->n_modulus, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(mod_tgt, mod_len))
+ return SEN_USER_ERROR;
+ exp_tgt += (exp_tgt_len - mod_len);
+ if (copy_from_user(exp_tgt, icaMex_p->b_key, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(exp_tgt, mod_len))
+ return SEN_USER_ERROR;
+ inp_tgt += (inp_tgt_len - mod_len);
+ if (copy_from_user(inp_tgt, icaMex_p->inputdata, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(inp_tgt, mod_len))
+ return SEN_USER_ERROR;
+
+ *z90cMsg_l_p = msg_size - CALLER_HEADER;
+
+ return 0;
+}
+
+static int
+ICACRT_msg_to_type4CRT_msg(struct ica_rsa_modexpo_crt *icaMsg_p,
+ int *z90cMsg_l_p, union type4_msg *z90cMsg_p)
+{
+ int mod_len, short_len, long_len, tmp_size, p_tgt_len, q_tgt_len,
+ dp_tgt_len, dq_tgt_len, u_tgt_len, inp_tgt_len;
+ unsigned char *p_tgt, *q_tgt, *dp_tgt, *dq_tgt, *u_tgt, *inp_tgt;
+ union type4_msg *tmp_type4_msg;
+
+ mod_len = icaMsg_p->inputdatalength;
+ short_len = mod_len / 2;
+ long_len = mod_len / 2 + 8;
+
+ tmp_size = ((mod_len <= 128) ? TYPE4_SCR_LEN : TYPE4_LCR_LEN) +
+ CALLER_HEADER;
+
+ memset(z90cMsg_p, 0, tmp_size);
+
+ tmp_type4_msg = (union type4_msg *)
+ ((unsigned char *) z90cMsg_p + CALLER_HEADER);
+
+ tmp_type4_msg->scr.header.msg_type_code = TYPE4_TYPE_CODE;
+ tmp_type4_msg->scr.header.request_code = TYPE4_REQU_CODE;
+ if (mod_len <= 128) {
+ tmp_type4_msg->scr.header.msg_fmt = TYPE4_SCR_FMT;
+ tmp_type4_msg->scr.header.msg_len = TYPE4_SCR_LEN;
+ p_tgt = tmp_type4_msg->scr.p;
+ p_tgt_len = sizeof(tmp_type4_msg->scr.p);
+ q_tgt = tmp_type4_msg->scr.q;
+ q_tgt_len = sizeof(tmp_type4_msg->scr.q);
+ dp_tgt = tmp_type4_msg->scr.dp;
+ dp_tgt_len = sizeof(tmp_type4_msg->scr.dp);
+ dq_tgt = tmp_type4_msg->scr.dq;
+ dq_tgt_len = sizeof(tmp_type4_msg->scr.dq);
+ u_tgt = tmp_type4_msg->scr.u;
+ u_tgt_len = sizeof(tmp_type4_msg->scr.u);
+ inp_tgt = tmp_type4_msg->scr.message;
+ inp_tgt_len = sizeof(tmp_type4_msg->scr.message);
+ } else {
+ tmp_type4_msg->lcr.header.msg_fmt = TYPE4_LCR_FMT;
+ tmp_type4_msg->lcr.header.msg_len = TYPE4_LCR_LEN;
+ p_tgt = tmp_type4_msg->lcr.p;
+ p_tgt_len = sizeof(tmp_type4_msg->lcr.p);
+ q_tgt = tmp_type4_msg->lcr.q;
+ q_tgt_len = sizeof(tmp_type4_msg->lcr.q);
+ dp_tgt = tmp_type4_msg->lcr.dp;
+ dp_tgt_len = sizeof(tmp_type4_msg->lcr.dp);
+ dq_tgt = tmp_type4_msg->lcr.dq;
+ dq_tgt_len = sizeof(tmp_type4_msg->lcr.dq);
+ u_tgt = tmp_type4_msg->lcr.u;
+ u_tgt_len = sizeof(tmp_type4_msg->lcr.u);
+ inp_tgt = tmp_type4_msg->lcr.message;
+ inp_tgt_len = sizeof(tmp_type4_msg->lcr.message);
+ }
+
+ p_tgt += (p_tgt_len - long_len);
+ if (copy_from_user(p_tgt, icaMsg_p->np_prime, long_len))
+ return SEN_RELEASED;
+ if (is_empty(p_tgt, long_len))
+ return SEN_USER_ERROR;
+ q_tgt += (q_tgt_len - short_len);
+ if (copy_from_user(q_tgt, icaMsg_p->nq_prime, short_len))
+ return SEN_RELEASED;
+ if (is_empty(q_tgt, short_len))
+ return SEN_USER_ERROR;
+ dp_tgt += (dp_tgt_len - long_len);
+ if (copy_from_user(dp_tgt, icaMsg_p->bp_key, long_len))
+ return SEN_RELEASED;
+ if (is_empty(dp_tgt, long_len))
+ return SEN_USER_ERROR;
+ dq_tgt += (dq_tgt_len - short_len);
+ if (copy_from_user(dq_tgt, icaMsg_p->bq_key, short_len))
+ return SEN_RELEASED;
+ if (is_empty(dq_tgt, short_len))
+ return SEN_USER_ERROR;
+ u_tgt += (u_tgt_len - long_len);
+ if (copy_from_user(u_tgt, icaMsg_p->u_mult_inv, long_len))
+ return SEN_RELEASED;
+ if (is_empty(u_tgt, long_len))
+ return SEN_USER_ERROR;
+ inp_tgt += (inp_tgt_len - mod_len);
+ if (copy_from_user(inp_tgt, icaMsg_p->inputdata, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(inp_tgt, mod_len))
+ return SEN_USER_ERROR;
+
+ *z90cMsg_l_p = tmp_size - CALLER_HEADER;
+
+ return 0;
+}
+
+static int
+ICAMEX_msg_to_type6MEX_de_msg(struct ica_rsa_modexpo *icaMsg_p, int cdx,
+ int *z90cMsg_l_p, struct type6_msg *z90cMsg_p)
+{
+ int mod_len, vud_len, tmp_size, total_CPRB_len, parmBlock_l;
+ unsigned char *temp;
+ struct type6_hdr *tp6Hdr_p;
+ struct CPRB *cprb_p;
+ struct cca_private_ext_ME *key_p;
+ static int deprecated_msg_count = 0;
+
+ mod_len = icaMsg_p->inputdatalength;
+ tmp_size = FIXED_TYPE6_ME_LEN + mod_len;
+ total_CPRB_len = tmp_size - sizeof(struct type6_hdr);
+ parmBlock_l = total_CPRB_len - sizeof(struct CPRB);
+ tmp_size = 4*((tmp_size + 3)/4) + CALLER_HEADER;
+
+ memset(z90cMsg_p, 0, tmp_size);
+
+ temp = (unsigned char *)z90cMsg_p + CALLER_HEADER;
+ memcpy(temp, &static_type6_hdr, sizeof(struct type6_hdr));
+ tp6Hdr_p = (struct type6_hdr *)temp;
+ tp6Hdr_p->ToCardLen1 = 4*((total_CPRB_len+3)/4);
+ tp6Hdr_p->FromCardLen1 = RESPONSE_CPRB_SIZE;
+
+ temp += sizeof(struct type6_hdr);
+ memcpy(temp, &static_cprb, sizeof(struct CPRB));
+ cprb_p = (struct CPRB *) temp;
+ cprb_p->usage_domain[0]= (unsigned char)cdx;
+ itoLe2(&parmBlock_l, cprb_p->req_parml);
+ itoLe2((int *)&(tp6Hdr_p->FromCardLen1), cprb_p->rpl_parml);
+
+ temp += sizeof(struct CPRB);
+ memcpy(temp, &static_pkd_function_and_rules,
+ sizeof(struct function_and_rules_block));
+
+ temp += sizeof(struct function_and_rules_block);
+ vud_len = 2 + icaMsg_p->inputdatalength;
+ itoLe2(&vud_len, temp);
+
+ temp += 2;
+ if (copy_from_user(temp, icaMsg_p->inputdata, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(temp, mod_len))
+ return SEN_USER_ERROR;
+
+ temp += mod_len;
+ memcpy(temp, &static_T6_keyBlock_hdr, sizeof(struct T6_keyBlock_hdr));
+
+ temp += sizeof(struct T6_keyBlock_hdr);
+ memcpy(temp, &static_pvt_me_key, sizeof(struct cca_private_ext_ME));
+ key_p = (struct cca_private_ext_ME *)temp;
+ temp = key_p->pvtMESec.exponent + sizeof(key_p->pvtMESec.exponent)
+ - mod_len;
+ if (copy_from_user(temp, icaMsg_p->b_key, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(temp, mod_len))
+ return SEN_USER_ERROR;
+
+ if (is_common_public_key(temp, mod_len)) {
+ if (deprecated_msg_count < 20) {
+ PRINTK("Common public key used for modex decrypt\n");
+ deprecated_msg_count++;
+ if (deprecated_msg_count == 20)
+ PRINTK("No longer issuing messages about common"
+ " public key for modex decrypt.\n");
+ }
+ return SEN_NOT_AVAIL;
+ }
+
+ temp = key_p->pvtMESec.modulus + sizeof(key_p->pvtMESec.modulus)
+ - mod_len;
+ if (copy_from_user(temp, icaMsg_p->n_modulus, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(temp, mod_len))
+ return SEN_USER_ERROR;
+
+ key_p->pubMESec.modulus_bit_len = 8 * mod_len;
+
+ *z90cMsg_l_p = tmp_size - CALLER_HEADER;
+
+ return 0;
+}
+
+static int
+ICAMEX_msg_to_type6MEX_en_msg(struct ica_rsa_modexpo *icaMsg_p, int cdx,
+ int *z90cMsg_l_p, struct type6_msg *z90cMsg_p)
+{
+ int mod_len, vud_len, exp_len, key_len;
+ int pad_len, tmp_size, total_CPRB_len, parmBlock_l, i;
+ unsigned char *temp_exp, *exp_p, *temp;
+ struct type6_hdr *tp6Hdr_p;
+ struct CPRB *cprb_p;
+ struct cca_public_key *key_p;
+ struct T6_keyBlock_hdr *keyb_p;
+
+ temp_exp = kmalloc(256, GFP_KERNEL);
+ if (!temp_exp)
+ return EGETBUFF;
+ mod_len = icaMsg_p->inputdatalength;
+ if (copy_from_user(temp_exp, icaMsg_p->b_key, mod_len)) {
+ kfree(temp_exp);
+ return SEN_RELEASED;
+ }
+ if (is_empty(temp_exp, mod_len)) {
+ kfree(temp_exp);
+ return SEN_USER_ERROR;
+ }
+
+ exp_p = temp_exp;
+ for (i = 0; i < mod_len; i++)
+ if (exp_p[i])
+ break;
+ if (i >= mod_len) {
+ kfree(temp_exp);
+ return SEN_USER_ERROR;
+ }
+
+ exp_len = mod_len - i;
+ exp_p += i;
+
+ PDEBUG("exp_len after computation: %08x\n", exp_len);
+ tmp_size = FIXED_TYPE6_ME_EN_LEN + 2 * mod_len + exp_len;
+ total_CPRB_len = tmp_size - sizeof(struct type6_hdr);
+ parmBlock_l = total_CPRB_len - sizeof(struct CPRB);
+ tmp_size = 4*((tmp_size + 3)/4) + CALLER_HEADER;
+
+ vud_len = 2 + mod_len;
+ memset(z90cMsg_p, 0, tmp_size);
+
+ temp = (unsigned char *)z90cMsg_p + CALLER_HEADER;
+ memcpy(temp, &static_type6_hdr, sizeof(struct type6_hdr));
+ tp6Hdr_p = (struct type6_hdr *)temp;
+ tp6Hdr_p->ToCardLen1 = 4*((total_CPRB_len+3)/4);
+ tp6Hdr_p->FromCardLen1 = RESPONSE_CPRB_SIZE;
+ memcpy(tp6Hdr_p->function_code, static_PKE_function_code,
+ sizeof(static_PKE_function_code));
+ temp += sizeof(struct type6_hdr);
+ memcpy(temp, &static_cprb, sizeof(struct CPRB));
+ cprb_p = (struct CPRB *) temp;
+ cprb_p->usage_domain[0]= (unsigned char)cdx;
+ itoLe2((int *)&(tp6Hdr_p->FromCardLen1), cprb_p->rpl_parml);
+ temp += sizeof(struct CPRB);
+ memcpy(temp, &static_pke_function_and_rules,
+ sizeof(struct function_and_rules_block));
+ temp += sizeof(struct function_and_rules_block);
+ temp += 2;
+ if (copy_from_user(temp, icaMsg_p->inputdata, mod_len)) {
+ kfree(temp_exp);
+ return SEN_RELEASED;
+ }
+ if (is_empty(temp, mod_len)) {
+ kfree(temp_exp);
+ return SEN_USER_ERROR;
+ }
+ if ((temp[0] != 0x00) || (temp[1] != 0x02)) {
+ kfree(temp_exp);
+ return SEN_NOT_AVAIL;
+ }
+ for (i = 2; i < mod_len; i++)
+ if (temp[i] == 0x00)
+ break;
+ if ((i < 9) || (i > (mod_len - 2))) {
+ kfree(temp_exp);
+ return SEN_NOT_AVAIL;
+ }
+ pad_len = i + 1;
+ vud_len = mod_len - pad_len;
+ memmove(temp, temp+pad_len, vud_len);
+ temp -= 2;
+ vud_len += 2;
+ itoLe2(&vud_len, temp);
+ temp += (vud_len);
+ keyb_p = (struct T6_keyBlock_hdr *)temp;
+ temp += sizeof(struct T6_keyBlock_hdr);
+ memcpy(temp, &static_public_key, sizeof(static_public_key));
+ key_p = (struct cca_public_key *)temp;
+ temp = key_p->pubSec.exponent;
+ memcpy(temp, exp_p, exp_len);
+ kfree(temp_exp);
+ temp += exp_len;
+ if (copy_from_user(temp, icaMsg_p->n_modulus, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(temp, mod_len))
+ return SEN_USER_ERROR;
+ key_p->pubSec.modulus_bit_len = 8 * mod_len;
+ key_p->pubSec.modulus_byte_len = mod_len;
+ key_p->pubSec.exponent_len = exp_len;
+ key_p->pubSec.section_length = CALLER_HEADER + mod_len + exp_len;
+ key_len = key_p->pubSec.section_length + sizeof(struct cca_token_hdr);
+ key_p->pubHdr.token_length = key_len;
+ key_len += 4;
+ itoLe2(&key_len, keyb_p->ulen);
+ key_len += 2;
+ itoLe2(&key_len, keyb_p->blen);
+ parmBlock_l -= pad_len;
+ itoLe2(&parmBlock_l, cprb_p->req_parml);
+ *z90cMsg_l_p = tmp_size - CALLER_HEADER;
+
+ return 0;
+}
+
+static int
+ICACRT_msg_to_type6CRT_msg(struct ica_rsa_modexpo_crt *icaMsg_p, int cdx,
+ int *z90cMsg_l_p, struct type6_msg *z90cMsg_p)
+{
+ int mod_len, vud_len, tmp_size, total_CPRB_len, parmBlock_l, short_len;
+ int long_len, pad_len, keyPartsLen, tmp_l;
+ unsigned char *tgt_p, *temp;
+ struct type6_hdr *tp6Hdr_p;
+ struct CPRB *cprb_p;
+ struct cca_token_hdr *keyHdr_p;
+ struct cca_pvt_ext_CRT_sec *pvtSec_p;
+ struct cca_public_sec *pubSec_p;
+
+ mod_len = icaMsg_p->inputdatalength;
+ short_len = mod_len / 2;
+ long_len = 8 + short_len;
+ keyPartsLen = 3 * long_len + 2 * short_len;
+ pad_len = (8 - (keyPartsLen % 8)) % 8;
+ keyPartsLen += pad_len + mod_len;
+ tmp_size = FIXED_TYPE6_CR_LEN + keyPartsLen + mod_len;
+ total_CPRB_len = tmp_size - sizeof(struct type6_hdr);
+ parmBlock_l = total_CPRB_len - sizeof(struct CPRB);
+ vud_len = 2 + mod_len;
+ tmp_size = 4*((tmp_size + 3)/4) + CALLER_HEADER;
+
+ memset(z90cMsg_p, 0, tmp_size);
+ tgt_p = (unsigned char *)z90cMsg_p + CALLER_HEADER;
+ memcpy(tgt_p, &static_type6_hdr, sizeof(struct type6_hdr));
+ tp6Hdr_p = (struct type6_hdr *)tgt_p;
+ tp6Hdr_p->ToCardLen1 = 4*((total_CPRB_len+3)/4);
+ tp6Hdr_p->FromCardLen1 = RESPONSE_CPRB_SIZE;
+ tgt_p += sizeof(struct type6_hdr);
+ cprb_p = (struct CPRB *) tgt_p;
+ memcpy(tgt_p, &static_cprb, sizeof(struct CPRB));
+ cprb_p->usage_domain[0]= *((unsigned char *)(&(cdx))+3);
+ itoLe2(&parmBlock_l, cprb_p->req_parml);
+ memcpy(cprb_p->rpl_parml, cprb_p->req_parml,
+ sizeof(cprb_p->req_parml));
+ tgt_p += sizeof(struct CPRB);
+ memcpy(tgt_p, &static_pkd_function_and_rules,
+ sizeof(struct function_and_rules_block));
+ tgt_p += sizeof(struct function_and_rules_block);
+ itoLe2(&vud_len, tgt_p);
+ tgt_p += 2;
+ if (copy_from_user(tgt_p, icaMsg_p->inputdata, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, mod_len))
+ return SEN_USER_ERROR;
+ tgt_p += mod_len;
+ tmp_l = sizeof(struct T6_keyBlock_hdr) + sizeof(struct cca_token_hdr) +
+ sizeof(struct cca_pvt_ext_CRT_sec) + 0x0F + keyPartsLen;
+ itoLe2(&tmp_l, tgt_p);
+ temp = tgt_p + 2;
+ tmp_l -= 2;
+ itoLe2(&tmp_l, temp);
+ tgt_p += sizeof(struct T6_keyBlock_hdr);
+ keyHdr_p = (struct cca_token_hdr *)tgt_p;
+ keyHdr_p->token_identifier = CCA_TKN_HDR_ID_EXT;
+ tmp_l -= 4;
+ keyHdr_p->token_length = tmp_l;
+ tgt_p += sizeof(struct cca_token_hdr);
+ pvtSec_p = (struct cca_pvt_ext_CRT_sec *)tgt_p;
+ pvtSec_p->section_identifier = CCA_PVT_EXT_CRT_SEC_ID_PVT;
+ pvtSec_p->section_length =
+ sizeof(struct cca_pvt_ext_CRT_sec) + keyPartsLen;
+ pvtSec_p->key_format = CCA_PVT_EXT_CRT_SEC_FMT_CL;
+ pvtSec_p->key_use_flags[0] = CCA_PVT_USAGE_ALL;
+ pvtSec_p->p_len = long_len;
+ pvtSec_p->q_len = short_len;
+ pvtSec_p->dp_len = long_len;
+ pvtSec_p->dq_len = short_len;
+ pvtSec_p->u_len = long_len;
+ pvtSec_p->mod_len = mod_len;
+ pvtSec_p->pad_len = pad_len;
+ tgt_p += sizeof(struct cca_pvt_ext_CRT_sec);
+ if (copy_from_user(tgt_p, icaMsg_p->np_prime, long_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, long_len))
+ return SEN_USER_ERROR;
+ tgt_p += long_len;
+ if (copy_from_user(tgt_p, icaMsg_p->nq_prime, short_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, short_len))
+ return SEN_USER_ERROR;
+ tgt_p += short_len;
+ if (copy_from_user(tgt_p, icaMsg_p->bp_key, long_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, long_len))
+ return SEN_USER_ERROR;
+ tgt_p += long_len;
+ if (copy_from_user(tgt_p, icaMsg_p->bq_key, short_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, short_len))
+ return SEN_USER_ERROR;
+ tgt_p += short_len;
+ if (copy_from_user(tgt_p, icaMsg_p->u_mult_inv, long_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, long_len))
+ return SEN_USER_ERROR;
+ tgt_p += long_len;
+ tgt_p += pad_len;
+ memset(tgt_p, 0xFF, mod_len);
+ tgt_p += mod_len;
+ memcpy(tgt_p, &static_cca_pub_sec, sizeof(struct cca_public_sec));
+ pubSec_p = (struct cca_public_sec *) tgt_p;
+ pubSec_p->modulus_bit_len = 8 * mod_len;
+ *z90cMsg_l_p = tmp_size - CALLER_HEADER;
+
+ return 0;
+}
+
+static int
+ICAMEX_msg_to_type6MEX_msgX(struct ica_rsa_modexpo *icaMsg_p, int cdx,
+ int *z90cMsg_l_p, struct type6_msg *z90cMsg_p,
+ int dev_type)
+{
+ int mod_len, exp_len, vud_len, tmp_size, total_CPRB_len, parmBlock_l;
+ int key_len, i;
+ unsigned char *temp_exp, *tgt_p, *temp, *exp_p;
+ struct type6_hdr *tp6Hdr_p;
+ struct CPRBX *cprbx_p;
+ struct cca_public_key *key_p;
+ struct T6_keyBlock_hdrX *keyb_p;
+
+ temp_exp = kmalloc(256, GFP_KERNEL);
+ if (!temp_exp)
+ return EGETBUFF;
+ mod_len = icaMsg_p->inputdatalength;
+ if (copy_from_user(temp_exp, icaMsg_p->b_key, mod_len)) {
+ kfree(temp_exp);
+ return SEN_RELEASED;
+ }
+ if (is_empty(temp_exp, mod_len)) {
+ kfree(temp_exp);
+ return SEN_USER_ERROR;
+ }
+ exp_p = temp_exp;
+ for (i = 0; i < mod_len; i++)
+ if (exp_p[i])
+ break;
+ if (i >= mod_len) {
+ kfree(temp_exp);
+ return SEN_USER_ERROR;
+ }
+ exp_len = mod_len - i;
+ exp_p += i;
+ PDEBUG("exp_len after computation: %08x\n", exp_len);
+ tmp_size = FIXED_TYPE6_ME_EN_LENX + 2 * mod_len + exp_len;
+ total_CPRB_len = tmp_size - sizeof(struct type6_hdr);
+ parmBlock_l = total_CPRB_len - sizeof(struct CPRBX);
+ tmp_size = tmp_size + CALLER_HEADER;
+ vud_len = 2 + mod_len;
+ memset(z90cMsg_p, 0, tmp_size);
+ tgt_p = (unsigned char *)z90cMsg_p + CALLER_HEADER;
+ memcpy(tgt_p, &static_type6_hdrX, sizeof(struct type6_hdr));
+ tp6Hdr_p = (struct type6_hdr *)tgt_p;
+ tp6Hdr_p->ToCardLen1 = total_CPRB_len;
+ tp6Hdr_p->FromCardLen1 = RESPONSE_CPRBX_SIZE;
+ memcpy(tp6Hdr_p->function_code, static_PKE_function_code,
+ sizeof(static_PKE_function_code));
+ tgt_p += sizeof(struct type6_hdr);
+ memcpy(tgt_p, &static_cprbx, sizeof(struct CPRBX));
+ cprbx_p = (struct CPRBX *) tgt_p;
+ cprbx_p->domain = (unsigned short)cdx;
+ cprbx_p->rpl_msgbl = RESPONSE_CPRBX_SIZE;
+ tgt_p += sizeof(struct CPRBX);
+ if (dev_type == PCIXCC_MCL2)
+ memcpy(tgt_p, &static_pke_function_and_rulesX_MCL2,
+ sizeof(struct function_and_rules_block));
+ else
+ memcpy(tgt_p, &static_pke_function_and_rulesX,
+ sizeof(struct function_and_rules_block));
+ tgt_p += sizeof(struct function_and_rules_block);
+
+ tgt_p += 2;
+ if (copy_from_user(tgt_p, icaMsg_p->inputdata, mod_len)) {
+ kfree(temp_exp);
+ return SEN_RELEASED;
+ }
+ if (is_empty(tgt_p, mod_len)) {
+ kfree(temp_exp);
+ return SEN_USER_ERROR;
+ }
+ tgt_p -= 2;
+ *((short *)tgt_p) = (short) vud_len;
+ tgt_p += vud_len;
+ keyb_p = (struct T6_keyBlock_hdrX *)tgt_p;
+ tgt_p += sizeof(struct T6_keyBlock_hdrX);
+ memcpy(tgt_p, &static_public_key, sizeof(static_public_key));
+ key_p = (struct cca_public_key *)tgt_p;
+ temp = key_p->pubSec.exponent;
+ memcpy(temp, exp_p, exp_len);
+ kfree(temp_exp);
+ temp += exp_len;
+ if (copy_from_user(temp, icaMsg_p->n_modulus, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(temp, mod_len))
+ return SEN_USER_ERROR;
+ key_p->pubSec.modulus_bit_len = 8 * mod_len;
+ key_p->pubSec.modulus_byte_len = mod_len;
+ key_p->pubSec.exponent_len = exp_len;
+ key_p->pubSec.section_length = CALLER_HEADER + mod_len + exp_len;
+ key_len = key_p->pubSec.section_length + sizeof(struct cca_token_hdr);
+ key_p->pubHdr.token_length = key_len;
+ key_len += 4;
+ keyb_p->ulen = (unsigned short)key_len;
+ key_len += 2;
+ keyb_p->blen = (unsigned short)key_len;
+ cprbx_p->req_parml = parmBlock_l;
+ *z90cMsg_l_p = tmp_size - CALLER_HEADER;
+
+ return 0;
+}
+
+static int
+ICACRT_msg_to_type6CRT_msgX(struct ica_rsa_modexpo_crt *icaMsg_p, int cdx,
+ int *z90cMsg_l_p, struct type6_msg *z90cMsg_p,
+ int dev_type)
+{
+ int mod_len, vud_len, tmp_size, total_CPRB_len, parmBlock_l, short_len;
+ int long_len, pad_len, keyPartsLen, tmp_l;
+ unsigned char *tgt_p, *temp;
+ struct type6_hdr *tp6Hdr_p;
+ struct CPRBX *cprbx_p;
+ struct cca_token_hdr *keyHdr_p;
+ struct cca_pvt_ext_CRT_sec *pvtSec_p;
+ struct cca_public_sec *pubSec_p;
+
+ mod_len = icaMsg_p->inputdatalength;
+ short_len = mod_len / 2;
+ long_len = 8 + short_len;
+ keyPartsLen = 3 * long_len + 2 * short_len;
+ pad_len = (8 - (keyPartsLen % 8)) % 8;
+ keyPartsLen += pad_len + mod_len;
+ tmp_size = FIXED_TYPE6_CR_LENX + keyPartsLen + mod_len;
+ total_CPRB_len = tmp_size - sizeof(struct type6_hdr);
+ parmBlock_l = total_CPRB_len - sizeof(struct CPRBX);
+ vud_len = 2 + mod_len;
+ tmp_size = tmp_size + CALLER_HEADER;
+ memset(z90cMsg_p, 0, tmp_size);
+ tgt_p = (unsigned char *)z90cMsg_p + CALLER_HEADER;
+ memcpy(tgt_p, &static_type6_hdrX, sizeof(struct type6_hdr));
+ tp6Hdr_p = (struct type6_hdr *)tgt_p;
+ tp6Hdr_p->ToCardLen1 = total_CPRB_len;
+ tp6Hdr_p->FromCardLen1 = RESPONSE_CPRBX_SIZE;
+ tgt_p += sizeof(struct type6_hdr);
+ cprbx_p = (struct CPRBX *) tgt_p;
+ memcpy(tgt_p, &static_cprbx, sizeof(struct CPRBX));
+ cprbx_p->domain = (unsigned short)cdx;
+ cprbx_p->req_parml = parmBlock_l;
+ cprbx_p->rpl_msgbl = parmBlock_l;
+ tgt_p += sizeof(struct CPRBX);
+ if (dev_type == PCIXCC_MCL2)
+ memcpy(tgt_p, &static_pkd_function_and_rulesX_MCL2,
+ sizeof(struct function_and_rules_block));
+ else
+ memcpy(tgt_p, &static_pkd_function_and_rulesX,
+ sizeof(struct function_and_rules_block));
+ tgt_p += sizeof(struct function_and_rules_block);
+ *((short *)tgt_p) = (short) vud_len;
+ tgt_p += 2;
+ if (copy_from_user(tgt_p, icaMsg_p->inputdata, mod_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, mod_len))
+ return SEN_USER_ERROR;
+ tgt_p += mod_len;
+ tmp_l = sizeof(struct T6_keyBlock_hdr) + sizeof(struct cca_token_hdr) +
+ sizeof(struct cca_pvt_ext_CRT_sec) + 0x0F + keyPartsLen;
+ *((short *)tgt_p) = (short) tmp_l;
+ temp = tgt_p + 2;
+ tmp_l -= 2;
+ *((short *)temp) = (short) tmp_l;
+ tgt_p += sizeof(struct T6_keyBlock_hdr);
+ keyHdr_p = (struct cca_token_hdr *)tgt_p;
+ keyHdr_p->token_identifier = CCA_TKN_HDR_ID_EXT;
+ tmp_l -= 4;
+ keyHdr_p->token_length = tmp_l;
+ tgt_p += sizeof(struct cca_token_hdr);
+ pvtSec_p = (struct cca_pvt_ext_CRT_sec *)tgt_p;
+ pvtSec_p->section_identifier = CCA_PVT_EXT_CRT_SEC_ID_PVT;
+ pvtSec_p->section_length =
+ sizeof(struct cca_pvt_ext_CRT_sec) + keyPartsLen;
+ pvtSec_p->key_format = CCA_PVT_EXT_CRT_SEC_FMT_CL;
+ pvtSec_p->key_use_flags[0] = CCA_PVT_USAGE_ALL;
+ pvtSec_p->p_len = long_len;
+ pvtSec_p->q_len = short_len;
+ pvtSec_p->dp_len = long_len;
+ pvtSec_p->dq_len = short_len;
+ pvtSec_p->u_len = long_len;
+ pvtSec_p->mod_len = mod_len;
+ pvtSec_p->pad_len = pad_len;
+ tgt_p += sizeof(struct cca_pvt_ext_CRT_sec);
+ if (copy_from_user(tgt_p, icaMsg_p->np_prime, long_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, long_len))
+ return SEN_USER_ERROR;
+ tgt_p += long_len;
+ if (copy_from_user(tgt_p, icaMsg_p->nq_prime, short_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, short_len))
+ return SEN_USER_ERROR;
+ tgt_p += short_len;
+ if (copy_from_user(tgt_p, icaMsg_p->bp_key, long_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, long_len))
+ return SEN_USER_ERROR;
+ tgt_p += long_len;
+ if (copy_from_user(tgt_p, icaMsg_p->bq_key, short_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, short_len))
+ return SEN_USER_ERROR;
+ tgt_p += short_len;
+ if (copy_from_user(tgt_p, icaMsg_p->u_mult_inv, long_len))
+ return SEN_RELEASED;
+ if (is_empty(tgt_p, long_len))
+ return SEN_USER_ERROR;
+ tgt_p += long_len;
+ tgt_p += pad_len;
+ memset(tgt_p, 0xFF, mod_len);
+ tgt_p += mod_len;
+ memcpy(tgt_p, &static_cca_pub_sec, sizeof(struct cca_public_sec));
+ pubSec_p = (struct cca_public_sec *) tgt_p;
+ pubSec_p->modulus_bit_len = 8 * mod_len;
+ *z90cMsg_l_p = tmp_size - CALLER_HEADER;
+
+ return 0;
+}
+
+int
+convert_request(unsigned char *buffer, int func, unsigned short function,
+ int cdx, int dev_type, int *msg_l_p, unsigned char *msg_p)
+{
+ if (dev_type == PCICA) {
+ if (func == ICARSACRT)
+ return ICACRT_msg_to_type4CRT_msg(
+ (struct ica_rsa_modexpo_crt *) buffer,
+ msg_l_p, (union type4_msg *) msg_p);
+ else
+ return ICAMEX_msg_to_type4MEX_msg(
+ (struct ica_rsa_modexpo *) buffer,
+ msg_l_p, (union type4_msg *) msg_p);
+ }
+ if (dev_type == PCICC) {
+ if (func == ICARSACRT)
+ return ICACRT_msg_to_type6CRT_msg(
+ (struct ica_rsa_modexpo_crt *) buffer,
+ cdx, msg_l_p, (struct type6_msg *)msg_p);
+ if (function == PCI_FUNC_KEY_ENCRYPT)
+ return ICAMEX_msg_to_type6MEX_en_msg(
+ (struct ica_rsa_modexpo *) buffer,
+ cdx, msg_l_p, (struct type6_msg *) msg_p);
+ else
+ return ICAMEX_msg_to_type6MEX_de_msg(
+ (struct ica_rsa_modexpo *) buffer,
+ cdx, msg_l_p, (struct type6_msg *) msg_p);
+ }
+ if ((dev_type == PCIXCC_MCL2) ||
+ (dev_type == PCIXCC_MCL3) ||
+ (dev_type == CEX2C)) {
+ if (func == ICARSACRT)
+ return ICACRT_msg_to_type6CRT_msgX(
+ (struct ica_rsa_modexpo_crt *) buffer,
+ cdx, msg_l_p, (struct type6_msg *) msg_p,
+ dev_type);
+ else
+ return ICAMEX_msg_to_type6MEX_msgX(
+ (struct ica_rsa_modexpo *) buffer,
+ cdx, msg_l_p, (struct type6_msg *) msg_p,
+ dev_type);
+ }
+
+ return 0;
+}
+
+int ext_bitlens_msg_count = 0;
+static inline void
+unset_ext_bitlens(void)
+{
+ if (!ext_bitlens_msg_count) {
+ PRINTK("Unable to use coprocessors for extended bitlengths. "
+ "Using PCICAs (if present) for extended bitlengths. "
+ "This is not an error.\n");
+ ext_bitlens_msg_count++;
+ }
+ ext_bitlens = 0;
+}
+
+int
+convert_response(unsigned char *response, unsigned char *buffer,
+ int *respbufflen_p, unsigned char *resp_buff)
+{
+ struct ica_rsa_modexpo *icaMsg_p = (struct ica_rsa_modexpo *) buffer;
+ struct type82_hdr *t82h_p = (struct type82_hdr *) response;
+ struct type84_hdr *t84h_p = (struct type84_hdr *) response;
+ struct type86_fmt2_msg *t86m_p = (struct type86_fmt2_msg *) response;
+ int reply_code, service_rc, service_rs, src_l;
+ unsigned char *src_p, *tgt_p;
+ struct CPRB *cprb_p;
+ struct CPRBX *cprbx_p;
+
+ src_p = 0;
+ reply_code = 0;
+ service_rc = 0;
+ service_rs = 0;
+ src_l = 0;
+ switch (t82h_p->type) {
+ case TYPE82_RSP_CODE:
+ reply_code = t82h_p->reply_code;
+ src_p = (unsigned char *)t82h_p;
+ PRINTK("Hardware error: Type 82 Message Header: "
+ "%02x%02x%02x%02x%02x%02x%02x%02x\n",
+ src_p[0], src_p[1], src_p[2], src_p[3],
+ src_p[4], src_p[5], src_p[6], src_p[7]);
+ break;
+ case TYPE84_RSP_CODE:
+ src_l = icaMsg_p->outputdatalength;
+ src_p = response + (int)t84h_p->len - src_l;
+ break;
+ case TYPE86_RSP_CODE:
+ reply_code = t86m_p->hdr.reply_code;
+ if (reply_code != 0)
+ break;
+ cprb_p = (struct CPRB *)
+ (response + sizeof(struct type86_fmt2_msg));
+ cprbx_p = (struct CPRBX *) cprb_p;
+ if (cprb_p->cprb_ver_id != 0x02) {
+ le2toI(cprb_p->ccp_rtcode, &service_rc);
+ if (service_rc != 0) {
+ le2toI(cprb_p->ccp_rscode, &service_rs);
+ if ((service_rc == 8) && (service_rs == 66))
+ PDEBUG("Bad block format on PCICC\n");
+ else if ((service_rc == 8) && (service_rs == 770)) {
+ PDEBUG("Invalid key length on PCICC\n");
+ unset_ext_bitlens();
+ return REC_USE_PCICA;
+ }
+ else if ((service_rc == 8) && (service_rs == 783)) {
+ PDEBUG("Extended bitlengths not enabled"
+ "on PCICC\n");
+ unset_ext_bitlens();
+ return REC_USE_PCICA;
+ }
+ else
+ PRINTK("service rc/rs: %d/%d\n",
+ service_rc, service_rs);
+ return REC_OPERAND_INV;
+ }
+ src_p = (unsigned char *)cprb_p + sizeof(struct CPRB);
+ src_p += 4;
+ le2toI(src_p, &src_l);
+ src_l -= 2;
+ src_p += 2;
+ } else {
+ service_rc = (int)cprbx_p->ccp_rtcode;
+ if (service_rc != 0) {
+ service_rs = (int) cprbx_p->ccp_rscode;
+ if ((service_rc == 8) && (service_rs == 66))
+ PDEBUG("Bad block format on PCXICC\n");
+ else if ((service_rc == 8) && (service_rs == 770)) {
+ PDEBUG("Invalid key length on PCIXCC\n");
+ unset_ext_bitlens();
+ return REC_USE_PCICA;
+ }
+ else if ((service_rc == 8) && (service_rs == 783)) {
+ PDEBUG("Extended bitlengths not enabled"
+ "on PCIXCC\n");
+ unset_ext_bitlens();
+ return REC_USE_PCICA;
+ }
+ else
+ PRINTK("service rc/rs: %d/%d\n",
+ service_rc, service_rs);
+ return REC_OPERAND_INV;
+ }
+ src_p = (unsigned char *)
+ cprbx_p + sizeof(struct CPRBX);
+ src_p += 4;
+ src_l = (int)(*((short *) src_p));
+ src_l -= 2;
+ src_p += 2;
+ }
+ break;
+ default:
+ return REC_BAD_MESSAGE;
+ }
+
+ if (reply_code)
+ switch (reply_code) {
+ case REPLY_ERROR_OPERAND_INVALID:
+ return REC_OPERAND_INV;
+ case REPLY_ERROR_OPERAND_SIZE:
+ return REC_OPERAND_SIZE;
+ case REPLY_ERROR_EVEN_MOD_IN_OPND:
+ return REC_EVEN_MOD;
+ case REPLY_ERROR_MESSAGE_TYPE:
+ return WRONG_DEVICE_TYPE;
+ case REPLY_ERROR_TRANSPORT_FAIL:
+ PRINTKW("Transport failed (APFS = %02X%02X%02X%02X)\n",
+ t86m_p->apfs[0], t86m_p->apfs[1],
+ t86m_p->apfs[2], t86m_p->apfs[3]);
+ return REC_HARDWAR_ERR;
+ default:
+ PRINTKW("reply code = %d\n", reply_code);
+ return REC_HARDWAR_ERR;
+ }
+
+ if (service_rc != 0)
+ return REC_OPERAND_INV;
+
+ if ((src_l > icaMsg_p->outputdatalength) ||
+ (src_l > RESPBUFFSIZE) ||
+ (src_l <= 0))
+ return REC_OPERAND_SIZE;
+
+ PDEBUG("Length returned = %d\n", src_l);
+ tgt_p = resp_buff + icaMsg_p->outputdatalength - src_l;
+ memcpy(tgt_p, src_p, src_l);
+ if ((t82h_p->type == TYPE86_RSP_CODE) && (resp_buff < tgt_p)) {
+ memset(resp_buff, 0, icaMsg_p->outputdatalength - src_l);
+ if (pad_msg(resp_buff, icaMsg_p->outputdatalength, src_l))
+ return REC_INVALID_PAD;
+ }
+ *respbufflen_p = icaMsg_p->outputdatalength;
+ if (*respbufflen_p == 0)
+ PRINTK("Zero *respbufflen_p\n");
+
+ return 0;
+}
+
diff --git a/drivers/s390/crypto/z90main.c b/drivers/s390/crypto/z90main.c
new file mode 100644
index 00000000000..a98c00c0255
--- /dev/null
+++ b/drivers/s390/crypto/z90main.c
@@ -0,0 +1,3563 @@
+/*
+ * linux/drivers/s390/crypto/z90main.c
+ *
+ * z90crypt 1.3.2
+ *
+ * Copyright (C) 2001, 2004 IBM Corporation
+ * Author(s): Robert Burroughs (burrough@us.ibm.com)
+ * Eric Rossman (edrossma@us.ibm.com)
+ *
+ * Hotplug & misc device support: Jochen Roehrig (roehrig@de.ibm.com)
+ *
+ * This program is free software; you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation; either version 2, or (at your option)
+ * any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program; if not, write to the Free Software
+ * Foundation, Inc., 675 Mass Ave, Cambridge, MA 02139, USA.
+ */
+
+#include <asm/uaccess.h> // copy_(from|to)_user
+#include <linux/compat.h>
+#include <linux/compiler.h>
+#include <linux/delay.h> // mdelay
+#include <linux/init.h>
+#include <linux/interrupt.h> // for tasklets
+#include <linux/ioctl32.h>
+#include <linux/module.h>
+#include <linux/moduleparam.h>
+#include <linux/kobject_uevent.h>
+#include <linux/proc_fs.h>
+#include <linux/syscalls.h>
+#include <linux/version.h>
+#include "z90crypt.h"
+#include "z90common.h"
+#ifndef Z90CRYPT_USE_HOTPLUG
+#include <linux/miscdevice.h>
+#endif
+
+#define VERSION_CODE(vers, rel, seq) (((vers)<<16) | ((rel)<<8) | (seq))
+#if LINUX_VERSION_CODE < VERSION_CODE(2,4,0) /* version < 2.4 */
+# error "This kernel is too old: not supported"
+#endif
+#if LINUX_VERSION_CODE > VERSION_CODE(2,7,0) /* version > 2.6 */
+# error "This kernel is too recent: not supported by this file"
+#endif
+
+#define VERSION_Z90MAIN_C "$Revision: 1.57 $"
+
+static char z90main_version[] __initdata =
+ "z90main.o (" VERSION_Z90MAIN_C "/"
+ VERSION_Z90COMMON_H "/" VERSION_Z90CRYPT_H ")";
+
+extern char z90hardware_version[];
+
+/**
+ * Defaults that may be modified.
+ */
+
+#ifndef Z90CRYPT_USE_HOTPLUG
+/**
+ * You can specify a different minor at compile time.
+ */
+#ifndef Z90CRYPT_MINOR
+#define Z90CRYPT_MINOR MISC_DYNAMIC_MINOR
+#endif
+#else
+/**
+ * You can specify a different major at compile time.
+ */
+#ifndef Z90CRYPT_MAJOR
+#define Z90CRYPT_MAJOR 0
+#endif
+#endif
+
+/**
+ * You can specify a different domain at compile time or on the insmod
+ * command line.
+ */
+#ifndef DOMAIN_INDEX
+#define DOMAIN_INDEX -1
+#endif
+
+/**
+ * This is the name under which the device is registered in /proc/modules.
+ */
+#define REG_NAME "z90crypt"
+
+/**
+ * Cleanup should run every CLEANUPTIME seconds and should clean up requests
+ * older than CLEANUPTIME seconds in the past.
+ */
+#ifndef CLEANUPTIME
+#define CLEANUPTIME 20
+#endif
+
+/**
+ * Config should run every CONFIGTIME seconds
+ */
+#ifndef CONFIGTIME
+#define CONFIGTIME 30
+#endif
+
+/**
+ * The first execution of the config task should take place
+ * immediately after initialization
+ */
+#ifndef INITIAL_CONFIGTIME
+#define INITIAL_CONFIGTIME 1
+#endif
+
+/**
+ * Reader should run every READERTIME milliseconds
+ * With the 100Hz patch for s390, z90crypt can lock the system solid while
+ * under heavy load. We'll try to avoid that.
+ */
+#ifndef READERTIME
+#if HZ > 1000
+#define READERTIME 2
+#else
+#define READERTIME 10
+#endif
+#endif
+
+/**
+ * turn long device array index into device pointer
+ */
+#define LONG2DEVPTR(ndx) (z90crypt.device_p[(ndx)])
+
+/**
+ * turn short device array index into long device array index
+ */
+#define SHRT2LONG(ndx) (z90crypt.overall_device_x.device_index[(ndx)])
+
+/**
+ * turn short device array index into device pointer
+ */
+#define SHRT2DEVPTR(ndx) LONG2DEVPTR(SHRT2LONG(ndx))
+
+/**
+ * Status for a work-element
+ */
+#define STAT_DEFAULT 0x00 // request has not been processed
+
+#define STAT_ROUTED 0x80 // bit 7: requests get routed to specific device
+ // else, device is determined each write
+#define STAT_FAILED 0x40 // bit 6: this bit is set if the request failed
+ // before being sent to the hardware.
+#define STAT_WRITTEN 0x30 // bits 5-4: work to be done, not sent to device
+// 0x20 // UNUSED state
+#define STAT_READPEND 0x10 // bits 5-4: work done, we're returning data now
+#define STAT_NOWORK 0x00 // bits off: no work on any queue
+#define STAT_RDWRMASK 0x30 // mask for bits 5-4
+
+/**
+ * Macros to check the status RDWRMASK
+ */
+#define CHK_RDWRMASK(statbyte) ((statbyte) & STAT_RDWRMASK)
+#define SET_RDWRMASK(statbyte, newval) \
+ {(statbyte) &= ~STAT_RDWRMASK; (statbyte) |= newval;}
+
+/**
+ * Audit Trail. Progress of a Work element
+ * audit[0]: Unless noted otherwise, these bits are all set by the process
+ */
+#define FP_COPYFROM 0x80 // Caller's buffer has been copied to work element
+#define FP_BUFFREQ 0x40 // Low Level buffer requested
+#define FP_BUFFGOT 0x20 // Low Level buffer obtained
+#define FP_SENT 0x10 // Work element sent to a crypto device
+ // (may be set by process or by reader task)
+#define FP_PENDING 0x08 // Work element placed on pending queue
+ // (may be set by process or by reader task)
+#define FP_REQUEST 0x04 // Work element placed on request queue
+#define FP_ASLEEP 0x02 // Work element about to sleep
+#define FP_AWAKE 0x01 // Work element has been awakened
+
+/**
+ * audit[1]: These bits are set by the reader task and/or the cleanup task
+ */
+#define FP_NOTPENDING 0x80 // Work element removed from pending queue
+#define FP_AWAKENING 0x40 // Caller about to be awakened
+#define FP_TIMEDOUT 0x20 // Caller timed out
+#define FP_RESPSIZESET 0x10 // Response size copied to work element
+#define FP_RESPADDRCOPIED 0x08 // Response address copied to work element
+#define FP_RESPBUFFCOPIED 0x04 // Response buffer copied to work element
+#define FP_REMREQUEST 0x02 // Work element removed from request queue
+#define FP_SIGNALED 0x01 // Work element was awakened by a signal
+
+/**
+ * audit[2]: unused
+ */
+
+/**
+ * state of the file handle in private_data.status
+ */
+#define STAT_OPEN 0
+#define STAT_CLOSED 1
+
+/**
+ * PID() expands to the process ID of the current process
+ */
+#define PID() (current->pid)
+
+/**
+ * Selected Constants. The number of APs and the number of devices
+ */
+#ifndef Z90CRYPT_NUM_APS
+#define Z90CRYPT_NUM_APS 64
+#endif
+#ifndef Z90CRYPT_NUM_DEVS
+#define Z90CRYPT_NUM_DEVS Z90CRYPT_NUM_APS
+#endif
+
+/**
+ * Buffer size for receiving responses. The maximum Response Size
+ * is actually the maximum request size, since in an error condition
+ * the request itself may be returned unchanged.
+ */
+#define MAX_RESPONSE_SIZE 0x0000077C
+
+/**
+ * A count and status-byte mask
+ */
+struct status {
+ int st_count; // # of enabled devices
+ int disabled_count; // # of disabled devices
+ int user_disabled_count; // # of devices disabled via proc fs
+ unsigned char st_mask[Z90CRYPT_NUM_APS]; // current status mask
+};
+
+/**
+ * The array of device indexes is a mechanism for fast indexing into
+ * a long (and sparse) array. For instance, if APs 3, 9 and 47 are
+ * installed, z90CDeviceIndex[0] is 3, z90CDeviceIndex[1] is 9, and
+ * z90CDeviceIndex[2] is 47.
+ */
+struct device_x {
+ int device_index[Z90CRYPT_NUM_DEVS];
+};
+
+/**
+ * All devices are arranged in a single array: 64 APs
+ */
+struct device {
+ int dev_type; // PCICA, PCICC, PCIXCC_MCL2,
+ // PCIXCC_MCL3, CEX2C
+ enum devstat dev_stat; // current device status
+ int dev_self_x; // Index in array
+ int disabled; // Set when device is in error
+ int user_disabled; // Set when device is disabled by user
+ int dev_q_depth; // q depth
+ unsigned char * dev_resp_p; // Response buffer address
+ int dev_resp_l; // Response Buffer length
+ int dev_caller_count; // Number of callers
+ int dev_total_req_cnt; // # requests for device since load
+ struct list_head dev_caller_list; // List of callers
+};
+
+/**
+ * There's a struct status and a struct device_x for each device type.
+ */
+struct hdware_block {
+ struct status hdware_mask;
+ struct status type_mask[Z90CRYPT_NUM_TYPES];
+ struct device_x type_x_addr[Z90CRYPT_NUM_TYPES];
+ unsigned char device_type_array[Z90CRYPT_NUM_APS];
+};
+
+/**
+ * z90crypt is the topmost data structure in the hierarchy.
+ */
+struct z90crypt {
+ int max_count; // Nr of possible crypto devices
+ struct status mask;
+ int q_depth_array[Z90CRYPT_NUM_DEVS];
+ int dev_type_array[Z90CRYPT_NUM_DEVS];
+ struct device_x overall_device_x; // array device indexes
+ struct device * device_p[Z90CRYPT_NUM_DEVS];
+ int terminating;
+ int domain_established;// TRUE: domain has been found
+ int cdx; // Crypto Domain Index
+ int len; // Length of this data structure
+ struct hdware_block *hdware_info;
+};
+
+/**
+ * An array of these structures is pointed to from dev_caller
+ * The length of the array depends on the device type. For APs,
+ * there are 8.
+ *
+ * The caller buffer is allocated to the user at OPEN. At WRITE,
+ * it contains the request; at READ, the response. The function
+ * send_to_crypto_device converts the request to device-dependent
+ * form and use the caller's OPEN-allocated buffer for the response.
+ */
+struct caller {
+ int caller_buf_l; // length of original request
+ unsigned char * caller_buf_p; // Original request on WRITE
+ int caller_dev_dep_req_l; // len device dependent request
+ unsigned char * caller_dev_dep_req_p; // Device dependent form
+ unsigned char caller_id[8]; // caller-supplied message id
+ struct list_head caller_liste;
+ unsigned char caller_dev_dep_req[MAX_RESPONSE_SIZE];
+};
+
+/**
+ * Function prototypes from z90hardware.c
+ */
+enum hdstat query_online(int, int, int, int *, int *);
+enum devstat reset_device(int, int, int);
+enum devstat send_to_AP(int, int, int, unsigned char *);
+enum devstat receive_from_AP(int, int, int, unsigned char *, unsigned char *);
+int convert_request(unsigned char *, int, short, int, int, int *,
+ unsigned char *);
+int convert_response(unsigned char *, unsigned char *, int *, unsigned char *);
+
+/**
+ * Low level function prototypes
+ */
+static int create_z90crypt(int *);
+static int refresh_z90crypt(int *);
+static int find_crypto_devices(struct status *);
+static int create_crypto_device(int);
+static int destroy_crypto_device(int);
+static void destroy_z90crypt(void);
+static int refresh_index_array(struct status *, struct device_x *);
+static int probe_device_type(struct device *);
+static int probe_PCIXCC_type(struct device *);
+
+/**
+ * proc fs definitions
+ */
+static struct proc_dir_entry *z90crypt_entry;
+
+/**
+ * data structures
+ */
+
+/**
+ * work_element.opener points back to this structure
+ */
+struct priv_data {
+ pid_t opener_pid;
+ unsigned char status; // 0: open 1: closed
+};
+
+/**
+ * A work element is allocated for each request
+ */
+struct work_element {
+ struct priv_data *priv_data;
+ pid_t pid;
+ int devindex; // index of device processing this w_e
+ // (If request did not specify device,
+ // -1 until placed onto a queue)
+ int devtype;
+ struct list_head liste; // used for requestq and pendingq
+ char buffer[128]; // local copy of user request
+ int buff_size; // size of the buffer for the request
+ char resp_buff[RESPBUFFSIZE];
+ int resp_buff_size;
+ char __user * resp_addr; // address of response in user space
+ unsigned int funccode; // function code of request
+ wait_queue_head_t waitq;
+ unsigned long requestsent; // time at which the request was sent
+ atomic_t alarmrung; // wake-up signal
+ unsigned char caller_id[8]; // pid + counter, for this w_e
+ unsigned char status[1]; // bits to mark status of the request
+ unsigned char audit[3]; // record of work element's progress
+ unsigned char * requestptr; // address of request buffer
+ int retcode; // return code of request
+};
+
+/**
+ * High level function prototypes
+ */
+static int z90crypt_open(struct inode *, struct file *);
+static int z90crypt_release(struct inode *, struct file *);
+static ssize_t z90crypt_read(struct file *, char __user *, size_t, loff_t *);
+static ssize_t z90crypt_write(struct file *, const char __user *,
+ size_t, loff_t *);
+static int z90crypt_ioctl(struct inode *, struct file *,
+ unsigned int, unsigned long);
+
+static void z90crypt_reader_task(unsigned long);
+static void z90crypt_schedule_reader_task(unsigned long);
+static void z90crypt_config_task(unsigned long);
+static void z90crypt_cleanup_task(unsigned long);
+
+static int z90crypt_status(char *, char **, off_t, int, int *, void *);
+static int z90crypt_status_write(struct file *, const char __user *,
+ unsigned long, void *);
+
+/**
+ * Hotplug support
+ */
+
+#ifdef Z90CRYPT_USE_HOTPLUG
+#define Z90CRYPT_HOTPLUG_ADD 1
+#define Z90CRYPT_HOTPLUG_REMOVE 2
+
+static void z90crypt_hotplug_event(int, int, int);
+#endif
+
+/**
+ * Storage allocated at initialization and used throughout the life of
+ * this insmod
+ */
+#ifdef Z90CRYPT_USE_HOTPLUG
+static int z90crypt_major = Z90CRYPT_MAJOR;
+#endif
+
+static int domain = DOMAIN_INDEX;
+static struct z90crypt z90crypt;
+static int quiesce_z90crypt;
+static spinlock_t queuespinlock;
+static struct list_head request_list;
+static int requestq_count;
+static struct list_head pending_list;
+static int pendingq_count;
+
+static struct tasklet_struct reader_tasklet;
+static struct timer_list reader_timer;
+static struct timer_list config_timer;
+static struct timer_list cleanup_timer;
+static atomic_t total_open;
+static atomic_t z90crypt_step;
+
+static struct file_operations z90crypt_fops = {
+ .owner = THIS_MODULE,
+ .read = z90crypt_read,
+ .write = z90crypt_write,
+ .ioctl = z90crypt_ioctl,
+ .open = z90crypt_open,
+ .release = z90crypt_release
+};
+
+#ifndef Z90CRYPT_USE_HOTPLUG
+static struct miscdevice z90crypt_misc_device = {
+ .minor = Z90CRYPT_MINOR,
+ .name = DEV_NAME,
+ .fops = &z90crypt_fops,
+ .devfs_name = DEV_NAME
+};
+#endif
+
+/**
+ * Documentation values.
+ */
+MODULE_AUTHOR("zSeries Linux Crypto Team: Robert H. Burroughs, Eric D. Rossman"
+ "and Jochen Roehrig");
+MODULE_DESCRIPTION("zSeries Linux Cryptographic Coprocessor device driver, "
+ "Copyright 2001, 2004 IBM Corporation");
+MODULE_LICENSE("GPL");
+module_param(domain, int, 0);
+MODULE_PARM_DESC(domain, "domain index for device");
+
+#ifdef CONFIG_COMPAT
+/**
+ * ioctl32 conversion routines
+ */
+struct ica_rsa_modexpo_32 { // For 32-bit callers
+ compat_uptr_t inputdata;
+ unsigned int inputdatalength;
+ compat_uptr_t outputdata;
+ unsigned int outputdatalength;
+ compat_uptr_t b_key;
+ compat_uptr_t n_modulus;
+};
+
+static int
+trans_modexpo32(unsigned int fd, unsigned int cmd, unsigned long arg,
+ struct file *file)
+{
+ struct ica_rsa_modexpo_32 __user *mex32u = compat_ptr(arg);
+ struct ica_rsa_modexpo_32 mex32k;
+ struct ica_rsa_modexpo __user *mex64;
+ int ret = 0;
+ unsigned int i;
+
+ if (!access_ok(VERIFY_WRITE, mex32u, sizeof(struct ica_rsa_modexpo_32)))
+ return -EFAULT;
+ mex64 = compat_alloc_user_space(sizeof(struct ica_rsa_modexpo));
+ if (!access_ok(VERIFY_WRITE, mex64, sizeof(struct ica_rsa_modexpo)))
+ return -EFAULT;
+ if (copy_from_user(&mex32k, mex32u, sizeof(struct ica_rsa_modexpo_32)))
+ return -EFAULT;
+ if (__put_user(compat_ptr(mex32k.inputdata), &mex64->inputdata) ||
+ __put_user(mex32k.inputdatalength, &mex64->inputdatalength) ||
+ __put_user(compat_ptr(mex32k.outputdata), &mex64->outputdata) ||
+ __put_user(mex32k.outputdatalength, &mex64->outputdatalength) ||
+ __put_user(compat_ptr(mex32k.b_key), &mex64->b_key) ||
+ __put_user(compat_ptr(mex32k.n_modulus), &mex64->n_modulus))
+ return -EFAULT;
+ ret = sys_ioctl(fd, cmd, (unsigned long)mex64);
+ if (!ret)
+ if (__get_user(i, &mex64->outputdatalength) ||
+ __put_user(i, &mex32u->outputdatalength))
+ ret = -EFAULT;
+ return ret;
+}
+
+struct ica_rsa_modexpo_crt_32 { // For 32-bit callers
+ compat_uptr_t inputdata;
+ unsigned int inputdatalength;
+ compat_uptr_t outputdata;
+ unsigned int outputdatalength;
+ compat_uptr_t bp_key;
+ compat_uptr_t bq_key;
+ compat_uptr_t np_prime;
+ compat_uptr_t nq_prime;
+ compat_uptr_t u_mult_inv;
+};
+
+static int
+trans_modexpo_crt32(unsigned int fd, unsigned int cmd, unsigned long arg,
+ struct file *file)
+{
+ struct ica_rsa_modexpo_crt_32 __user *crt32u = compat_ptr(arg);
+ struct ica_rsa_modexpo_crt_32 crt32k;
+ struct ica_rsa_modexpo_crt __user *crt64;
+ int ret = 0;
+ unsigned int i;
+
+ if (!access_ok(VERIFY_WRITE, crt32u,
+ sizeof(struct ica_rsa_modexpo_crt_32)))
+ return -EFAULT;
+ crt64 = compat_alloc_user_space(sizeof(struct ica_rsa_modexpo_crt));
+ if (!access_ok(VERIFY_WRITE, crt64, sizeof(struct ica_rsa_modexpo_crt)))
+ return -EFAULT;
+ if (copy_from_user(&crt32k, crt32u,
+ sizeof(struct ica_rsa_modexpo_crt_32)))
+ return -EFAULT;
+ if (__put_user(compat_ptr(crt32k.inputdata), &crt64->inputdata) ||
+ __put_user(crt32k.inputdatalength, &crt64->inputdatalength) ||
+ __put_user(compat_ptr(crt32k.outputdata), &crt64->outputdata) ||
+ __put_user(crt32k.outputdatalength, &crt64->outputdatalength) ||
+ __put_user(compat_ptr(crt32k.bp_key), &crt64->bp_key) ||
+ __put_user(compat_ptr(crt32k.bq_key), &crt64->bq_key) ||
+ __put_user(compat_ptr(crt32k.np_prime), &crt64->np_prime) ||
+ __put_user(compat_ptr(crt32k.nq_prime), &crt64->nq_prime) ||
+ __put_user(compat_ptr(crt32k.u_mult_inv), &crt64->u_mult_inv))
+ ret = -EFAULT;
+ if (!ret)
+ ret = sys_ioctl(fd, cmd, (unsigned long)crt64);
+ if (!ret)
+ if (__get_user(i, &crt64->outputdatalength) ||
+ __put_user(i, &crt32u->outputdatalength))
+ ret = -EFAULT;
+ return ret;
+}
+
+static int compatible_ioctls[] = {
+ ICAZ90STATUS, Z90QUIESCE, Z90STAT_TOTALCOUNT, Z90STAT_PCICACOUNT,
+ Z90STAT_PCICCCOUNT, Z90STAT_PCIXCCCOUNT, Z90STAT_PCIXCCMCL2COUNT,
+ Z90STAT_PCIXCCMCL3COUNT, Z90STAT_CEX2CCOUNT, Z90STAT_REQUESTQ_COUNT,
+ Z90STAT_PENDINGQ_COUNT, Z90STAT_TOTALOPEN_COUNT, Z90STAT_DOMAIN_INDEX,
+ Z90STAT_STATUS_MASK, Z90STAT_QDEPTH_MASK, Z90STAT_PERDEV_REQCNT,
+};
+
+static void z90_unregister_ioctl32s(void)
+{
+ int i;
+
+ unregister_ioctl32_conversion(ICARSAMODEXPO);
+ unregister_ioctl32_conversion(ICARSACRT);
+
+ for(i = 0; i < ARRAY_SIZE(compatible_ioctls); i++)
+ unregister_ioctl32_conversion(compatible_ioctls[i]);
+}
+
+static int z90_register_ioctl32s(void)
+{
+ int result, i;
+
+ result = register_ioctl32_conversion(ICARSAMODEXPO, trans_modexpo32);
+ if (result == -EBUSY) {
+ unregister_ioctl32_conversion(ICARSAMODEXPO);
+ result = register_ioctl32_conversion(ICARSAMODEXPO,
+ trans_modexpo32);
+ }
+ if (result)
+ return result;
+ result = register_ioctl32_conversion(ICARSACRT, trans_modexpo_crt32);
+ if (result == -EBUSY) {
+ unregister_ioctl32_conversion(ICARSACRT);
+ result = register_ioctl32_conversion(ICARSACRT,
+ trans_modexpo_crt32);
+ }
+ if (result)
+ return result;
+
+ for(i = 0; i < ARRAY_SIZE(compatible_ioctls); i++) {
+ result = register_ioctl32_conversion(compatible_ioctls[i], 0);
+ if (result == -EBUSY) {
+ unregister_ioctl32_conversion(compatible_ioctls[i]);
+ result = register_ioctl32_conversion(
+ compatible_ioctls[i], 0);
+ }
+ if (result)
+ return result;
+ }
+ return 0;
+}
+#else // !CONFIG_COMPAT
+static inline void z90_unregister_ioctl32s(void)
+{
+}
+
+static inline int z90_register_ioctl32s(void)
+{
+ return 0;
+}
+#endif
+
+/**
+ * The module initialization code.
+ */
+static int __init
+z90crypt_init_module(void)
+{
+ int result, nresult;
+ struct proc_dir_entry *entry;
+
+ PDEBUG("PID %d\n", PID());
+
+ if ((domain < -1) || (domain > 15)) {
+ PRINTKW("Invalid param: domain = %d. Not loading.\n", domain);
+ return -EINVAL;
+ }
+
+#ifndef Z90CRYPT_USE_HOTPLUG
+ /* Register as misc device with given minor (or get a dynamic one). */
+ result = misc_register(&z90crypt_misc_device);
+ if (result < 0) {
+ PRINTKW(KERN_ERR "misc_register (minor %d) failed with %d\n",
+ z90crypt_misc_device.minor, result);
+ return result;
+ }
+#else
+ /* Register the major (or get a dynamic one). */
+ result = register_chrdev(z90crypt_major, REG_NAME, &z90crypt_fops);
+ if (result < 0) {
+ PRINTKW("register_chrdev (major %d) failed with %d.\n",
+ z90crypt_major, result);
+ return result;
+ }
+
+ if (z90crypt_major == 0)
+ z90crypt_major = result;
+#endif
+
+ PDEBUG("Registered " DEV_NAME " with result %d\n", result);
+
+ result = create_z90crypt(&domain);
+ if (result != 0) {
+ PRINTKW("create_z90crypt (domain index %d) failed with %d.\n",
+ domain, result);
+ result = -ENOMEM;
+ goto init_module_cleanup;
+ }
+
+ if (result == 0) {
+ PRINTKN("Version %d.%d.%d loaded, built on %s %s\n",
+ z90crypt_VERSION, z90crypt_RELEASE, z90crypt_VARIANT,
+ __DATE__, __TIME__);
+ PRINTKN("%s\n", z90main_version);
+ PRINTKN("%s\n", z90hardware_version);
+ PDEBUG("create_z90crypt (domain index %d) successful.\n",
+ domain);
+ } else
+ PRINTK("No devices at startup\n");
+
+#ifdef Z90CRYPT_USE_HOTPLUG
+ /* generate hotplug event for device node generation */
+ z90crypt_hotplug_event(z90crypt_major, 0, Z90CRYPT_HOTPLUG_ADD);
+#endif
+
+ /* Initialize globals. */
+ spin_lock_init(&queuespinlock);
+
+ INIT_LIST_HEAD(&pending_list);
+ pendingq_count = 0;
+
+ INIT_LIST_HEAD(&request_list);
+ requestq_count = 0;
+
+ quiesce_z90crypt = 0;
+
+ atomic_set(&total_open, 0);
+ atomic_set(&z90crypt_step, 0);
+
+ /* Set up the cleanup task. */
+ init_timer(&cleanup_timer);
+ cleanup_timer.function = z90crypt_cleanup_task;
+ cleanup_timer.data = 0;
+ cleanup_timer.expires = jiffies + (CLEANUPTIME * HZ);
+ add_timer(&cleanup_timer);
+
+ /* Set up the proc file system */
+ entry = create_proc_entry("driver/z90crypt", 0644, 0);
+ if (entry) {
+ entry->nlink = 1;
+ entry->data = 0;
+ entry->read_proc = z90crypt_status;
+ entry->write_proc = z90crypt_status_write;
+ }
+ else
+ PRINTK("Couldn't create z90crypt proc entry\n");
+ z90crypt_entry = entry;
+
+ /* Set up the configuration task. */
+ init_timer(&config_timer);
+ config_timer.function = z90crypt_config_task;
+ config_timer.data = 0;
+ config_timer.expires = jiffies + (INITIAL_CONFIGTIME * HZ);
+ add_timer(&config_timer);
+
+ /* Set up the reader task */
+ tasklet_init(&reader_tasklet, z90crypt_reader_task, 0);
+ init_timer(&reader_timer);
+ reader_timer.function = z90crypt_schedule_reader_task;
+ reader_timer.data = 0;
+ reader_timer.expires = jiffies + (READERTIME * HZ / 1000);
+ add_timer(&reader_timer);
+
+ if ((result = z90_register_ioctl32s()))
+ goto init_module_cleanup;
+
+ return 0; // success
+
+init_module_cleanup:
+ z90_unregister_ioctl32s();
+
+#ifndef Z90CRYPT_USE_HOTPLUG
+ if ((nresult = misc_deregister(&z90crypt_misc_device)))
+ PRINTK("misc_deregister failed with %d.\n", nresult);
+ else
+ PDEBUG("misc_deregister successful.\n");
+#else
+ if ((nresult = unregister_chrdev(z90crypt_major, REG_NAME)))
+ PRINTK("unregister_chrdev failed with %d.\n", nresult);
+ else
+ PDEBUG("unregister_chrdev successful.\n");
+#endif
+
+ return result; // failure
+}
+
+/**
+ * The module termination code
+ */
+static void __exit
+z90crypt_cleanup_module(void)
+{
+ int nresult;
+
+ PDEBUG("PID %d\n", PID());
+
+ z90_unregister_ioctl32s();
+
+ remove_proc_entry("driver/z90crypt", 0);
+
+#ifndef Z90CRYPT_USE_HOTPLUG
+ if ((nresult = misc_deregister(&z90crypt_misc_device)))
+ PRINTK("misc_deregister failed with %d.\n", nresult);
+ else
+ PDEBUG("misc_deregister successful.\n");
+#else
+ z90crypt_hotplug_event(z90crypt_major, 0, Z90CRYPT_HOTPLUG_REMOVE);
+
+ if ((nresult = unregister_chrdev(z90crypt_major, REG_NAME)))
+ PRINTK("unregister_chrdev failed with %d.\n", nresult);
+ else
+ PDEBUG("unregister_chrdev successful.\n");
+#endif
+
+ /* Remove the tasks */
+ tasklet_kill(&reader_tasklet);
+ del_timer(&reader_timer);
+ del_timer(&config_timer);
+ del_timer(&cleanup_timer);
+
+ destroy_z90crypt();
+
+ PRINTKN("Unloaded.\n");
+}
+
+/**
+ * Functions running under a process id
+ *
+ * The I/O functions:
+ * z90crypt_open
+ * z90crypt_release
+ * z90crypt_read
+ * z90crypt_write
+ * z90crypt_ioctl
+ * z90crypt_status
+ * z90crypt_status_write
+ * disable_card
+ * enable_card
+ * scan_char
+ * scan_string
+ *
+ * Helper functions:
+ * z90crypt_rsa
+ * z90crypt_prepare
+ * z90crypt_send
+ * z90crypt_process_results
+ *
+ */
+static int
+z90crypt_open(struct inode *inode, struct file *filp)
+{
+ struct priv_data *private_data_p;
+
+ if (quiesce_z90crypt)
+ return -EQUIESCE;
+
+ private_data_p = kmalloc(sizeof(struct priv_data), GFP_KERNEL);
+ if (!private_data_p) {
+ PRINTK("Memory allocate failed\n");
+ return -ENOMEM;
+ }
+
+ memset((void *)private_data_p, 0, sizeof(struct priv_data));
+ private_data_p->status = STAT_OPEN;
+ private_data_p->opener_pid = PID();
+ filp->private_data = private_data_p;
+ atomic_inc(&total_open);
+
+ return 0;
+}
+
+static int
+z90crypt_release(struct inode *inode, struct file *filp)
+{
+ struct priv_data *private_data_p = filp->private_data;
+
+ PDEBUG("PID %d (filp %p)\n", PID(), filp);
+
+ private_data_p->status = STAT_CLOSED;
+ memset(private_data_p, 0, sizeof(struct priv_data));
+ kfree(private_data_p);
+ atomic_dec(&total_open);
+
+ return 0;
+}
+
+/*
+ * there are two read functions, of which compile options will choose one
+ * without USE_GET_RANDOM_BYTES
+ * => read() always returns -EPERM;
+ * otherwise
+ * => read() uses get_random_bytes() kernel function
+ */
+#ifndef USE_GET_RANDOM_BYTES
+/**
+ * z90crypt_read will not be supported beyond z90crypt 1.3.1
+ */
+static ssize_t
+z90crypt_read(struct file *filp, char __user *buf, size_t count, loff_t *f_pos)
+{
+ PDEBUG("filp %p (PID %d)\n", filp, PID());
+ return -EPERM;
+}
+#else // we want to use get_random_bytes
+/**
+ * read() just returns a string of random bytes. Since we have no way
+ * to generate these cryptographically, we just execute get_random_bytes
+ * for the length specified.
+ */
+#include <linux/random.h>
+static ssize_t
+z90crypt_read(struct file *filp, char __user *buf, size_t count, loff_t *f_pos)
+{
+ unsigned char *temp_buff;
+
+ PDEBUG("filp %p (PID %d)\n", filp, PID());
+
+ if (quiesce_z90crypt)
+ return -EQUIESCE;
+ if (count < 0) {
+ PRINTK("Requested random byte count negative: %ld\n", count);
+ return -EINVAL;
+ }
+ if (count > RESPBUFFSIZE) {
+ PDEBUG("count[%d] > RESPBUFFSIZE", count);
+ return -EINVAL;
+ }
+ if (count == 0)
+ return 0;
+ temp_buff = kmalloc(RESPBUFFSIZE, GFP_KERNEL);
+ if (!temp_buff) {
+ PRINTK("Memory allocate failed\n");
+ return -ENOMEM;
+ }
+ get_random_bytes(temp_buff, count);
+
+ if (copy_to_user(buf, temp_buff, count) != 0) {
+ kfree(temp_buff);
+ return -EFAULT;
+ }
+ kfree(temp_buff);
+ return count;
+}
+#endif
+
+/**
+ * Write is is not allowed
+ */
+static ssize_t
+z90crypt_write(struct file *filp, const char __user *buf, size_t count, loff_t *f_pos)
+{
+ PDEBUG("filp %p (PID %d)\n", filp, PID());
+ return -EPERM;
+}
+
+/**
+ * New status functions
+ */
+static inline int
+get_status_totalcount(void)
+{
+ return z90crypt.hdware_info->hdware_mask.st_count;
+}
+
+static inline int
+get_status_PCICAcount(void)
+{
+ return z90crypt.hdware_info->type_mask[PCICA].st_count;
+}
+
+static inline int
+get_status_PCICCcount(void)
+{
+ return z90crypt.hdware_info->type_mask[PCICC].st_count;
+}
+
+static inline int
+get_status_PCIXCCcount(void)
+{
+ return z90crypt.hdware_info->type_mask[PCIXCC_MCL2].st_count +
+ z90crypt.hdware_info->type_mask[PCIXCC_MCL3].st_count;
+}
+
+static inline int
+get_status_PCIXCCMCL2count(void)
+{
+ return z90crypt.hdware_info->type_mask[PCIXCC_MCL2].st_count;
+}
+
+static inline int
+get_status_PCIXCCMCL3count(void)
+{
+ return z90crypt.hdware_info->type_mask[PCIXCC_MCL3].st_count;
+}
+
+static inline int
+get_status_CEX2Ccount(void)
+{
+ return z90crypt.hdware_info->type_mask[CEX2C].st_count;
+}
+
+static inline int
+get_status_requestq_count(void)
+{
+ return requestq_count;
+}
+
+static inline int
+get_status_pendingq_count(void)
+{
+ return pendingq_count;
+}
+
+static inline int
+get_status_totalopen_count(void)
+{
+ return atomic_read(&total_open);
+}
+
+static inline int
+get_status_domain_index(void)
+{
+ return z90crypt.cdx;
+}
+
+static inline unsigned char *
+get_status_status_mask(unsigned char status[Z90CRYPT_NUM_APS])
+{
+ int i, ix;
+
+ memcpy(status, z90crypt.hdware_info->device_type_array,
+ Z90CRYPT_NUM_APS);
+
+ for (i = 0; i < get_status_totalcount(); i++) {
+ ix = SHRT2LONG(i);
+ if (LONG2DEVPTR(ix)->user_disabled)
+ status[ix] = 0x0d;
+ }
+
+ return status;
+}
+
+static inline unsigned char *
+get_status_qdepth_mask(unsigned char qdepth[Z90CRYPT_NUM_APS])
+{
+ int i, ix;
+
+ memset(qdepth, 0, Z90CRYPT_NUM_APS);
+
+ for (i = 0; i < get_status_totalcount(); i++) {
+ ix = SHRT2LONG(i);
+ qdepth[ix] = LONG2DEVPTR(ix)->dev_caller_count;
+ }
+
+ return qdepth;
+}
+
+static inline unsigned int *
+get_status_perdevice_reqcnt(unsigned int reqcnt[Z90CRYPT_NUM_APS])
+{
+ int i, ix;
+
+ memset(reqcnt, 0, Z90CRYPT_NUM_APS * sizeof(int));
+
+ for (i = 0; i < get_status_totalcount(); i++) {
+ ix = SHRT2LONG(i);
+ reqcnt[ix] = LONG2DEVPTR(ix)->dev_total_req_cnt;
+ }
+
+ return reqcnt;
+}
+
+static inline void
+init_work_element(struct work_element *we_p,
+ struct priv_data *priv_data, pid_t pid)
+{
+ int step;
+
+ we_p->requestptr = (unsigned char *)we_p + sizeof(struct work_element);
+ /* Come up with a unique id for this caller. */
+ step = atomic_inc_return(&z90crypt_step);
+ memcpy(we_p->caller_id+0, (void *) &pid, sizeof(pid));
+ memcpy(we_p->caller_id+4, (void *) &step, sizeof(step));
+ we_p->pid = pid;
+ we_p->priv_data = priv_data;
+ we_p->status[0] = STAT_DEFAULT;
+ we_p->audit[0] = 0x00;
+ we_p->audit[1] = 0x00;
+ we_p->audit[2] = 0x00;
+ we_p->resp_buff_size = 0;
+ we_p->retcode = 0;
+ we_p->devindex = -1;
+ we_p->devtype = -1;
+ atomic_set(&we_p->alarmrung, 0);
+ init_waitqueue_head(&we_p->waitq);
+ INIT_LIST_HEAD(&(we_p->liste));
+}
+
+static inline int
+allocate_work_element(struct work_element **we_pp,
+ struct priv_data *priv_data_p, pid_t pid)
+{
+ struct work_element *we_p;
+
+ we_p = (struct work_element *) get_zeroed_page(GFP_KERNEL);
+ if (!we_p)
+ return -ENOMEM;
+ init_work_element(we_p, priv_data_p, pid);
+ *we_pp = we_p;
+ return 0;
+}
+
+static inline void
+remove_device(struct device *device_p)
+{
+ if (!device_p || (device_p->disabled != 0))
+ return;
+ device_p->disabled = 1;
+ z90crypt.hdware_info->type_mask[device_p->dev_type].disabled_count++;
+ z90crypt.hdware_info->hdware_mask.disabled_count++;
+}
+
+/**
+ * Bitlength limits for each card
+ *
+ * There are new MCLs which allow more bitlengths. See the table for details.
+ * The MCL must be applied and the newer bitlengths enabled for these to work.
+ *
+ * Card Type Old limit New limit
+ * PCICC 512-1024 512-2048
+ * PCIXCC_MCL2 512-2048 no change (applying this MCL == card is MCL3+)
+ * PCIXCC_MCL3 512-2048 128-2048
+ * CEX2C 512-2048 128-2048
+ *
+ * ext_bitlens (extended bitlengths) is a global, since you should not apply an
+ * MCL to just one card in a machine. We assume, at first, that all cards have
+ * these capabilities.
+ */
+int ext_bitlens = 1; // This is global
+#define PCIXCC_MIN_MOD_SIZE 16 // 128 bits
+#define OLD_PCIXCC_MIN_MOD_SIZE 64 // 512 bits
+#define PCICC_MIN_MOD_SIZE 64 // 512 bits
+#define OLD_PCICC_MAX_MOD_SIZE 128 // 1024 bits
+#define MAX_MOD_SIZE 256 // 2048 bits
+
+static inline int
+select_device_type(int *dev_type_p, int bytelength)
+{
+ static int count = 0;
+ int PCICA_avail, PCIXCC_MCL3_avail, CEX2C_avail, index_to_use;
+ struct status *stat;
+ if ((*dev_type_p != PCICC) && (*dev_type_p != PCICA) &&
+ (*dev_type_p != PCIXCC_MCL2) && (*dev_type_p != PCIXCC_MCL3) &&
+ (*dev_type_p != CEX2C) && (*dev_type_p != ANYDEV))
+ return -1;
+ if (*dev_type_p != ANYDEV) {
+ stat = &z90crypt.hdware_info->type_mask[*dev_type_p];
+ if (stat->st_count >
+ (stat->disabled_count + stat->user_disabled_count))
+ return 0;
+ return -1;
+ }
+
+ /* Assumption: PCICA, PCIXCC_MCL3, and CEX2C are all similar in speed */
+ stat = &z90crypt.hdware_info->type_mask[PCICA];
+ PCICA_avail = stat->st_count -
+ (stat->disabled_count + stat->user_disabled_count);
+ stat = &z90crypt.hdware_info->type_mask[PCIXCC_MCL3];
+ PCIXCC_MCL3_avail = stat->st_count -
+ (stat->disabled_count + stat->user_disabled_count);
+ stat = &z90crypt.hdware_info->type_mask[CEX2C];
+ CEX2C_avail = stat->st_count -
+ (stat->disabled_count + stat->user_disabled_count);
+ if (PCICA_avail || PCIXCC_MCL3_avail || CEX2C_avail) {
+ /**
+ * bitlength is a factor, PCICA is the most capable, even with
+ * the new MCL.
+ */
+ if ((bytelength < PCIXCC_MIN_MOD_SIZE) ||
+ (!ext_bitlens && (bytelength < OLD_PCIXCC_MIN_MOD_SIZE))) {
+ if (!PCICA_avail)
+ return -1;
+ else {
+ *dev_type_p = PCICA;
+ return 0;
+ }
+ }
+
+ index_to_use = count % (PCICA_avail + PCIXCC_MCL3_avail +
+ CEX2C_avail);
+ if (index_to_use < PCICA_avail)
+ *dev_type_p = PCICA;
+ else if (index_to_use < (PCICA_avail + PCIXCC_MCL3_avail))
+ *dev_type_p = PCIXCC_MCL3;
+ else
+ *dev_type_p = CEX2C;
+ count++;
+ return 0;
+ }
+
+ /* Less than OLD_PCIXCC_MIN_MOD_SIZE cannot go to a PCIXCC_MCL2 */
+ if (bytelength < OLD_PCIXCC_MIN_MOD_SIZE)
+ return -1;
+ stat = &z90crypt.hdware_info->type_mask[PCIXCC_MCL2];
+ if (stat->st_count >
+ (stat->disabled_count + stat->user_disabled_count)) {
+ *dev_type_p = PCIXCC_MCL2;
+ return 0;
+ }
+
+ /**
+ * Less than PCICC_MIN_MOD_SIZE or more than OLD_PCICC_MAX_MOD_SIZE
+ * (if we don't have the MCL applied and the newer bitlengths enabled)
+ * cannot go to a PCICC
+ */
+ if ((bytelength < PCICC_MIN_MOD_SIZE) ||
+ (!ext_bitlens && (bytelength > OLD_PCICC_MAX_MOD_SIZE))) {
+ return -1;
+ }
+ stat = &z90crypt.hdware_info->type_mask[PCICC];
+ if (stat->st_count >
+ (stat->disabled_count + stat->user_disabled_count)) {
+ *dev_type_p = PCICC;
+ return 0;
+ }
+
+ return -1;
+}
+
+/**
+ * Try the selected number, then the selected type (can be ANYDEV)
+ */
+static inline int
+select_device(int *dev_type_p, int *device_nr_p, int bytelength)
+{
+ int i, indx, devTp, low_count, low_indx;
+ struct device_x *index_p;
+ struct device *dev_ptr;
+
+ PDEBUG("device type = %d, index = %d\n", *dev_type_p, *device_nr_p);
+ if ((*device_nr_p >= 0) && (*device_nr_p < Z90CRYPT_NUM_DEVS)) {
+ PDEBUG("trying index = %d\n", *device_nr_p);
+ dev_ptr = z90crypt.device_p[*device_nr_p];
+
+ if (dev_ptr &&
+ (dev_ptr->dev_stat != DEV_GONE) &&
+ (dev_ptr->disabled == 0) &&
+ (dev_ptr->user_disabled == 0)) {
+ PDEBUG("selected by number, index = %d\n",
+ *device_nr_p);
+ *dev_type_p = dev_ptr->dev_type;
+ return *device_nr_p;
+ }
+ }
+ *device_nr_p = -1;
+ PDEBUG("trying type = %d\n", *dev_type_p);
+ devTp = *dev_type_p;
+ if (select_device_type(&devTp, bytelength) == -1) {
+ PDEBUG("failed to select by type\n");
+ return -1;
+ }
+ PDEBUG("selected type = %d\n", devTp);
+ index_p = &z90crypt.hdware_info->type_x_addr[devTp];
+ low_count = 0x0000FFFF;
+ low_indx = -1;
+ for (i = 0; i < z90crypt.hdware_info->type_mask[devTp].st_count; i++) {
+ indx = index_p->device_index[i];
+ dev_ptr = z90crypt.device_p[indx];
+ if (dev_ptr &&
+ (dev_ptr->dev_stat != DEV_GONE) &&
+ (dev_ptr->disabled == 0) &&
+ (dev_ptr->user_disabled == 0) &&
+ (devTp == dev_ptr->dev_type) &&
+ (low_count > dev_ptr->dev_caller_count)) {
+ low_count = dev_ptr->dev_caller_count;
+ low_indx = indx;
+ }
+ }
+ *device_nr_p = low_indx;
+ return low_indx;
+}
+
+static inline int
+send_to_crypto_device(struct work_element *we_p)
+{
+ struct caller *caller_p;
+ struct device *device_p;
+ int dev_nr;
+ int bytelen = ((struct ica_rsa_modexpo *)we_p->buffer)->inputdatalength;
+
+ if (!we_p->requestptr)
+ return SEN_FATAL_ERROR;
+ caller_p = (struct caller *)we_p->requestptr;
+ dev_nr = we_p->devindex;
+ if (select_device(&we_p->devtype, &dev_nr, bytelen) == -1) {
+ if (z90crypt.hdware_info->hdware_mask.st_count != 0)
+ return SEN_RETRY;
+ else
+ return SEN_NOT_AVAIL;
+ }
+ we_p->devindex = dev_nr;
+ device_p = z90crypt.device_p[dev_nr];
+ if (!device_p)
+ return SEN_NOT_AVAIL;
+ if (device_p->dev_type != we_p->devtype)
+ return SEN_RETRY;
+ if (device_p->dev_caller_count >= device_p->dev_q_depth)
+ return SEN_QUEUE_FULL;
+ PDEBUG("device number prior to send: %d\n", dev_nr);
+ switch (send_to_AP(dev_nr, z90crypt.cdx,
+ caller_p->caller_dev_dep_req_l,
+ caller_p->caller_dev_dep_req_p)) {
+ case DEV_SEN_EXCEPTION:
+ PRINTKC("Exception during send to device %d\n", dev_nr);
+ z90crypt.terminating = 1;
+ return SEN_FATAL_ERROR;
+ case DEV_GONE:
+ PRINTK("Device %d not available\n", dev_nr);
+ remove_device(device_p);
+ return SEN_NOT_AVAIL;
+ case DEV_EMPTY:
+ return SEN_NOT_AVAIL;
+ case DEV_NO_WORK:
+ return SEN_FATAL_ERROR;
+ case DEV_BAD_MESSAGE:
+ return SEN_USER_ERROR;
+ case DEV_QUEUE_FULL:
+ return SEN_QUEUE_FULL;
+ default:
+ case DEV_ONLINE:
+ break;
+ }
+ list_add_tail(&(caller_p->caller_liste), &(device_p->dev_caller_list));
+ device_p->dev_caller_count++;
+ return 0;
+}
+
+/**
+ * Send puts the user's work on one of two queues:
+ * the pending queue if the send was successful
+ * the request queue if the send failed because device full or busy
+ */
+static inline int
+z90crypt_send(struct work_element *we_p, const char *buf)
+{
+ int rv;
+
+ PDEBUG("PID %d\n", PID());
+
+ if (CHK_RDWRMASK(we_p->status[0]) != STAT_NOWORK) {
+ PDEBUG("PID %d tried to send more work but has outstanding "
+ "work.\n", PID());
+ return -EWORKPEND;
+ }
+ we_p->devindex = -1; // Reset device number
+ spin_lock_irq(&queuespinlock);
+ rv = send_to_crypto_device(we_p);
+ switch (rv) {
+ case 0:
+ we_p->requestsent = jiffies;
+ we_p->audit[0] |= FP_SENT;
+ list_add_tail(&we_p->liste, &pending_list);
+ ++pendingq_count;
+ we_p->audit[0] |= FP_PENDING;
+ break;
+ case SEN_BUSY:
+ case SEN_QUEUE_FULL:
+ rv = 0;
+ we_p->devindex = -1; // any device will do
+ we_p->requestsent = jiffies;
+ list_add_tail(&we_p->liste, &request_list);
+ ++requestq_count;
+ we_p->audit[0] |= FP_REQUEST;
+ break;
+ case SEN_RETRY:
+ rv = -ERESTARTSYS;
+ break;
+ case SEN_NOT_AVAIL:
+ PRINTK("*** No devices available.\n");
+ rv = we_p->retcode = -ENODEV;
+ we_p->status[0] |= STAT_FAILED;
+ break;
+ case REC_OPERAND_INV:
+ case REC_OPERAND_SIZE:
+ case REC_EVEN_MOD:
+ case REC_INVALID_PAD:
+ rv = we_p->retcode = -EINVAL;
+ we_p->status[0] |= STAT_FAILED;
+ break;
+ default:
+ we_p->retcode = rv;
+ we_p->status[0] |= STAT_FAILED;
+ break;
+ }
+ if (rv != -ERESTARTSYS)
+ SET_RDWRMASK(we_p->status[0], STAT_WRITTEN);
+ spin_unlock_irq(&queuespinlock);
+ if (rv == 0)
+ tasklet_schedule(&reader_tasklet);
+ return rv;
+}
+
+/**
+ * process_results copies the user's work from kernel space.
+ */
+static inline int
+z90crypt_process_results(struct work_element *we_p, char __user *buf)
+{
+ int rv;
+
+ PDEBUG("we_p %p (PID %d)\n", we_p, PID());
+
+ LONG2DEVPTR(we_p->devindex)->dev_total_req_cnt++;
+ SET_RDWRMASK(we_p->status[0], STAT_READPEND);
+
+ rv = 0;
+ if (!we_p->buffer) {
+ PRINTK("we_p %p PID %d in STAT_READPEND: buffer NULL.\n",
+ we_p, PID());
+ rv = -ENOBUFF;
+ }
+
+ if (!rv)
+ if ((rv = copy_to_user(buf, we_p->buffer, we_p->buff_size))) {
+ PDEBUG("copy_to_user failed: rv = %d\n", rv);
+ rv = -EFAULT;
+ }
+
+ if (!rv)
+ rv = we_p->retcode;
+ if (!rv)
+ if (we_p->resp_buff_size
+ && copy_to_user(we_p->resp_addr, we_p->resp_buff,
+ we_p->resp_buff_size))
+ rv = -EFAULT;
+
+ SET_RDWRMASK(we_p->status[0], STAT_NOWORK);
+ return rv;
+}
+
+static unsigned char NULL_psmid[8] =
+{0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00};
+
+/**
+ * Used in device configuration functions
+ */
+#define MAX_RESET 90
+
+/**
+ * This is used only for PCICC support
+ */
+static inline int
+is_PKCS11_padded(unsigned char *buffer, int length)
+{
+ int i;
+ if ((buffer[0] != 0x00) || (buffer[1] != 0x01))
+ return 0;
+ for (i = 2; i < length; i++)
+ if (buffer[i] != 0xFF)
+ break;
+ if ((i < 10) || (i == length))
+ return 0;
+ if (buffer[i] != 0x00)
+ return 0;
+ return 1;
+}
+
+/**
+ * This is used only for PCICC support
+ */
+static inline int
+is_PKCS12_padded(unsigned char *buffer, int length)
+{
+ int i;
+ if ((buffer[0] != 0x00) || (buffer[1] != 0x02))
+ return 0;
+ for (i = 2; i < length; i++)
+ if (buffer[i] == 0x00)
+ break;
+ if ((i < 10) || (i == length))
+ return 0;
+ if (buffer[i] != 0x00)
+ return 0;
+ return 1;
+}
+
+/**
+ * builds struct caller and converts message from generic format to
+ * device-dependent format
+ * func is ICARSAMODEXPO or ICARSACRT
+ * function is PCI_FUNC_KEY_ENCRYPT or PCI_FUNC_KEY_DECRYPT
+ */
+static inline int
+build_caller(struct work_element *we_p, short function)
+{
+ int rv;
+ struct caller *caller_p = (struct caller *)we_p->requestptr;
+
+ if ((we_p->devtype != PCICC) && (we_p->devtype != PCICA) &&
+ (we_p->devtype != PCIXCC_MCL2) && (we_p->devtype != PCIXCC_MCL3) &&
+ (we_p->devtype != CEX2C))
+ return SEN_NOT_AVAIL;
+
+ memcpy(caller_p->caller_id, we_p->caller_id,
+ sizeof(caller_p->caller_id));
+ caller_p->caller_dev_dep_req_p = caller_p->caller_dev_dep_req;
+ caller_p->caller_dev_dep_req_l = MAX_RESPONSE_SIZE;
+ caller_p->caller_buf_p = we_p->buffer;
+ INIT_LIST_HEAD(&(caller_p->caller_liste));
+
+ rv = convert_request(we_p->buffer, we_p->funccode, function,
+ z90crypt.cdx, we_p->devtype,
+ &caller_p->caller_dev_dep_req_l,
+ caller_p->caller_dev_dep_req_p);
+ if (rv) {
+ if (rv == SEN_NOT_AVAIL)
+ PDEBUG("request can't be processed on hdwr avail\n");
+ else
+ PRINTK("Error from convert_request: %d\n", rv);
+ }
+ else
+ memcpy(&(caller_p->caller_dev_dep_req_p[4]), we_p->caller_id,8);
+ return rv;
+}
+
+static inline void
+unbuild_caller(struct device *device_p, struct caller *caller_p)
+{
+ if (!caller_p)
+ return;
+ if (caller_p->caller_liste.next && caller_p->caller_liste.prev)
+ if (!list_empty(&caller_p->caller_liste)) {
+ list_del_init(&caller_p->caller_liste);
+ device_p->dev_caller_count--;
+ }
+ memset(caller_p->caller_id, 0, sizeof(caller_p->caller_id));
+}
+
+static inline int
+get_crypto_request_buffer(struct work_element *we_p)
+{
+ struct ica_rsa_modexpo *mex_p;
+ struct ica_rsa_modexpo_crt *crt_p;
+ unsigned char *temp_buffer;
+ short function;
+ int rv;
+
+ mex_p = (struct ica_rsa_modexpo *) we_p->buffer;
+ crt_p = (struct ica_rsa_modexpo_crt *) we_p->buffer;
+
+ PDEBUG("device type input = %d\n", we_p->devtype);
+
+ if (z90crypt.terminating)
+ return REC_NO_RESPONSE;
+ if (memcmp(we_p->caller_id, NULL_psmid, 8) == 0) {
+ PRINTK("psmid zeroes\n");
+ return SEN_FATAL_ERROR;
+ }
+ if (!we_p->buffer) {
+ PRINTK("buffer pointer NULL\n");
+ return SEN_USER_ERROR;
+ }
+ if (!we_p->requestptr) {
+ PRINTK("caller pointer NULL\n");
+ return SEN_USER_ERROR;
+ }
+
+ if ((we_p->devtype != PCICA) && (we_p->devtype != PCICC) &&
+ (we_p->devtype != PCIXCC_MCL2) && (we_p->devtype != PCIXCC_MCL3) &&
+ (we_p->devtype != CEX2C) && (we_p->devtype != ANYDEV)) {
+ PRINTK("invalid device type\n");
+ return SEN_USER_ERROR;
+ }
+
+ if ((mex_p->inputdatalength < 1) ||
+ (mex_p->inputdatalength > MAX_MOD_SIZE)) {
+ PRINTK("inputdatalength[%d] is not valid\n",
+ mex_p->inputdatalength);
+ return SEN_USER_ERROR;
+ }
+
+ if (mex_p->outputdatalength < mex_p->inputdatalength) {
+ PRINTK("outputdatalength[%d] < inputdatalength[%d]\n",
+ mex_p->outputdatalength, mex_p->inputdatalength);
+ return SEN_USER_ERROR;
+ }
+
+ if (!mex_p->inputdata || !mex_p->outputdata) {
+ PRINTK("inputdata[%p] or outputdata[%p] is NULL\n",
+ mex_p->outputdata, mex_p->inputdata);
+ return SEN_USER_ERROR;
+ }
+
+ /**
+ * As long as outputdatalength is big enough, we can set the
+ * outputdatalength equal to the inputdatalength, since that is the
+ * number of bytes we will copy in any case
+ */
+ mex_p->outputdatalength = mex_p->inputdatalength;
+
+ rv = 0;
+ switch (we_p->funccode) {
+ case ICARSAMODEXPO:
+ if (!mex_p->b_key || !mex_p->n_modulus)
+ rv = SEN_USER_ERROR;
+ break;
+ case ICARSACRT:
+ if (!IS_EVEN(crt_p->inputdatalength)) {
+ PRINTK("inputdatalength[%d] is odd, CRT form\n",
+ crt_p->inputdatalength);
+ rv = SEN_USER_ERROR;
+ break;
+ }
+ if (!crt_p->bp_key ||
+ !crt_p->bq_key ||
+ !crt_p->np_prime ||
+ !crt_p->nq_prime ||
+ !crt_p->u_mult_inv) {
+ PRINTK("CRT form, bad data: %p/%p/%p/%p/%p\n",
+ crt_p->bp_key, crt_p->bq_key,
+ crt_p->np_prime, crt_p->nq_prime,
+ crt_p->u_mult_inv);
+ rv = SEN_USER_ERROR;
+ }
+ break;
+ default:
+ PRINTK("bad func = %d\n", we_p->funccode);
+ rv = SEN_USER_ERROR;
+ break;
+ }
+ if (rv != 0)
+ return rv;
+
+ if (select_device_type(&we_p->devtype, mex_p->inputdatalength) < 0)
+ return SEN_NOT_AVAIL;
+
+ temp_buffer = (unsigned char *)we_p + sizeof(struct work_element) +
+ sizeof(struct caller);
+ if (copy_from_user(temp_buffer, mex_p->inputdata,
+ mex_p->inputdatalength) != 0)
+ return SEN_RELEASED;
+
+ function = PCI_FUNC_KEY_ENCRYPT;
+ switch (we_p->devtype) {
+ /* PCICA does everything with a simple RSA mod-expo operation */
+ case PCICA:
+ function = PCI_FUNC_KEY_ENCRYPT;
+ break;
+ /**
+ * PCIXCC_MCL2 does all Mod-Expo form with a simple RSA mod-expo
+ * operation, and all CRT forms with a PKCS-1.2 format decrypt.
+ * PCIXCC_MCL3 and CEX2C do all Mod-Expo and CRT forms with a simple RSA
+ * mod-expo operation
+ */
+ case PCIXCC_MCL2:
+ if (we_p->funccode == ICARSAMODEXPO)
+ function = PCI_FUNC_KEY_ENCRYPT;
+ else
+ function = PCI_FUNC_KEY_DECRYPT;
+ break;
+ case PCIXCC_MCL3:
+ case CEX2C:
+ if (we_p->funccode == ICARSAMODEXPO)
+ function = PCI_FUNC_KEY_ENCRYPT;
+ else
+ function = PCI_FUNC_KEY_DECRYPT;
+ break;
+ /**
+ * PCICC does everything as a PKCS-1.2 format request
+ */
+ case PCICC:
+ /* PCICC cannot handle input that is is PKCS#1.1 padded */
+ if (is_PKCS11_padded(temp_buffer, mex_p->inputdatalength)) {
+ return SEN_NOT_AVAIL;
+ }
+ if (we_p->funccode == ICARSAMODEXPO) {
+ if (is_PKCS12_padded(temp_buffer,
+ mex_p->inputdatalength))
+ function = PCI_FUNC_KEY_ENCRYPT;
+ else
+ function = PCI_FUNC_KEY_DECRYPT;
+ } else
+ /* all CRT forms are decrypts */
+ function = PCI_FUNC_KEY_DECRYPT;
+ break;
+ }
+ PDEBUG("function: %04x\n", function);
+ rv = build_caller(we_p, function);
+ PDEBUG("rv from build_caller = %d\n", rv);
+ return rv;
+}
+
+static inline int
+z90crypt_prepare(struct work_element *we_p, unsigned int funccode,
+ const char __user *buffer)
+{
+ int rv;
+
+ we_p->devindex = -1;
+ if (funccode == ICARSAMODEXPO)
+ we_p->buff_size = sizeof(struct ica_rsa_modexpo);
+ else
+ we_p->buff_size = sizeof(struct ica_rsa_modexpo_crt);
+
+ if (copy_from_user(we_p->buffer, buffer, we_p->buff_size))
+ return -EFAULT;
+
+ we_p->audit[0] |= FP_COPYFROM;
+ SET_RDWRMASK(we_p->status[0], STAT_WRITTEN);
+ we_p->funccode = funccode;
+ we_p->devtype = -1;
+ we_p->audit[0] |= FP_BUFFREQ;
+ rv = get_crypto_request_buffer(we_p);
+ switch (rv) {
+ case 0:
+ we_p->audit[0] |= FP_BUFFGOT;
+ break;
+ case SEN_USER_ERROR:
+ rv = -EINVAL;
+ break;
+ case SEN_QUEUE_FULL:
+ rv = 0;
+ break;
+ case SEN_RELEASED:
+ rv = -EFAULT;
+ break;
+ case REC_NO_RESPONSE:
+ rv = -ENODEV;
+ break;
+ case SEN_NOT_AVAIL:
+ case EGETBUFF:
+ rv = -EGETBUFF;
+ break;
+ default:
+ PRINTK("rv = %d\n", rv);
+ rv = -EGETBUFF;
+ break;
+ }
+ if (CHK_RDWRMASK(we_p->status[0]) == STAT_WRITTEN)
+ SET_RDWRMASK(we_p->status[0], STAT_DEFAULT);
+ return rv;
+}
+
+static inline void
+purge_work_element(struct work_element *we_p)
+{
+ struct list_head *lptr;
+
+ spin_lock_irq(&queuespinlock);
+ list_for_each(lptr, &request_list) {
+ if (lptr == &we_p->liste) {
+ list_del_init(lptr);
+ requestq_count--;
+ break;
+ }
+ }
+ list_for_each(lptr, &pending_list) {
+ if (lptr == &we_p->liste) {
+ list_del_init(lptr);
+ pendingq_count--;
+ break;
+ }
+ }
+ spin_unlock_irq(&queuespinlock);
+}
+
+/**
+ * Build the request and send it.
+ */
+static inline int
+z90crypt_rsa(struct priv_data *private_data_p, pid_t pid,
+ unsigned int cmd, unsigned long arg)
+{
+ struct work_element *we_p;
+ int rv;
+
+ if ((rv = allocate_work_element(&we_p, private_data_p, pid))) {
+ PDEBUG("PID %d: allocate_work_element returned ENOMEM\n", pid);
+ return rv;
+ }
+ if ((rv = z90crypt_prepare(we_p, cmd, (const char __user *)arg)))
+ PDEBUG("PID %d: rv = %d from z90crypt_prepare\n", pid, rv);
+ if (!rv)
+ if ((rv = z90crypt_send(we_p, (const char *)arg)))
+ PDEBUG("PID %d: rv %d from z90crypt_send.\n", pid, rv);
+ if (!rv) {
+ we_p->audit[0] |= FP_ASLEEP;
+ wait_event(we_p->waitq, atomic_read(&we_p->alarmrung));
+ we_p->audit[0] |= FP_AWAKE;
+ rv = we_p->retcode;
+ }
+ if (!rv)
+ rv = z90crypt_process_results(we_p, (char __user *)arg);
+
+ if ((we_p->status[0] & STAT_FAILED)) {
+ switch (rv) {
+ /**
+ * EINVAL *after* receive is almost always a padding error or
+ * length error issued by a coprocessor (not an accelerator).
+ * We convert this return value to -EGETBUFF which should
+ * trigger a fallback to software.
+ */
+ case -EINVAL:
+ if (we_p->devtype != PCICA)
+ rv = -EGETBUFF;
+ break;
+ case -ETIMEOUT:
+ if (z90crypt.mask.st_count > 0)
+ rv = -ERESTARTSYS; // retry with another
+ else
+ rv = -ENODEV; // no cards left
+ /* fall through to clean up request queue */
+ case -ERESTARTSYS:
+ case -ERELEASED:
+ switch (CHK_RDWRMASK(we_p->status[0])) {
+ case STAT_WRITTEN:
+ purge_work_element(we_p);
+ break;
+ case STAT_READPEND:
+ case STAT_NOWORK:
+ default:
+ break;
+ }
+ break;
+ default:
+ we_p->status[0] ^= STAT_FAILED;
+ break;
+ }
+ }
+ free_page((long)we_p);
+ return rv;
+}
+
+/**
+ * This function is a little long, but it's really just one large switch
+ * statement.
+ */
+static int
+z90crypt_ioctl(struct inode *inode, struct file *filp,
+ unsigned int cmd, unsigned long arg)
+{
+ struct priv_data *private_data_p = filp->private_data;
+ unsigned char *status;
+ unsigned char *qdepth;
+ unsigned int *reqcnt;
+ struct ica_z90_status *pstat;
+ int ret, i, loopLim, tempstat;
+ static int deprecated_msg_count1 = 0;
+ static int deprecated_msg_count2 = 0;
+
+ PDEBUG("filp %p (PID %d), cmd 0x%08X\n", filp, PID(), cmd);
+ PDEBUG("cmd 0x%08X: dir %s, size 0x%04X, type 0x%02X, nr 0x%02X\n",
+ cmd,
+ !_IOC_DIR(cmd) ? "NO"
+ : ((_IOC_DIR(cmd) == (_IOC_READ|_IOC_WRITE)) ? "RW"
+ : ((_IOC_DIR(cmd) == _IOC_READ) ? "RD"
+ : "WR")),
+ _IOC_SIZE(cmd), _IOC_TYPE(cmd), _IOC_NR(cmd));
+
+ if (_IOC_TYPE(cmd) != Z90_IOCTL_MAGIC) {
+ PRINTK("cmd 0x%08X contains bad magic\n", cmd);
+ return -ENOTTY;
+ }
+
+ ret = 0;
+ switch (cmd) {
+ case ICARSAMODEXPO:
+ case ICARSACRT:
+ if (quiesce_z90crypt) {
+ ret = -EQUIESCE;
+ break;
+ }
+ ret = -ENODEV; // Default if no devices
+ loopLim = z90crypt.hdware_info->hdware_mask.st_count -
+ (z90crypt.hdware_info->hdware_mask.disabled_count +
+ z90crypt.hdware_info->hdware_mask.user_disabled_count);
+ for (i = 0; i < loopLim; i++) {
+ ret = z90crypt_rsa(private_data_p, PID(), cmd, arg);
+ if (ret != -ERESTARTSYS)
+ break;
+ }
+ if (ret == -ERESTARTSYS)
+ ret = -ENODEV;
+ break;
+
+ case Z90STAT_TOTALCOUNT:
+ tempstat = get_status_totalcount();
+ if (copy_to_user((int __user *)arg, &tempstat,sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_PCICACOUNT:
+ tempstat = get_status_PCICAcount();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_PCICCCOUNT:
+ tempstat = get_status_PCICCcount();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_PCIXCCMCL2COUNT:
+ tempstat = get_status_PCIXCCMCL2count();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_PCIXCCMCL3COUNT:
+ tempstat = get_status_PCIXCCMCL3count();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_CEX2CCOUNT:
+ tempstat = get_status_CEX2Ccount();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_REQUESTQ_COUNT:
+ tempstat = get_status_requestq_count();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_PENDINGQ_COUNT:
+ tempstat = get_status_pendingq_count();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_TOTALOPEN_COUNT:
+ tempstat = get_status_totalopen_count();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_DOMAIN_INDEX:
+ tempstat = get_status_domain_index();
+ if (copy_to_user((int __user *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90STAT_STATUS_MASK:
+ status = kmalloc(Z90CRYPT_NUM_APS, GFP_KERNEL);
+ if (!status) {
+ PRINTK("kmalloc for status failed!\n");
+ ret = -ENOMEM;
+ break;
+ }
+ get_status_status_mask(status);
+ if (copy_to_user((char __user *) arg, status, Z90CRYPT_NUM_APS)
+ != 0)
+ ret = -EFAULT;
+ kfree(status);
+ break;
+
+ case Z90STAT_QDEPTH_MASK:
+ qdepth = kmalloc(Z90CRYPT_NUM_APS, GFP_KERNEL);
+ if (!qdepth) {
+ PRINTK("kmalloc for qdepth failed!\n");
+ ret = -ENOMEM;
+ break;
+ }
+ get_status_qdepth_mask(qdepth);
+ if (copy_to_user((char __user *) arg, qdepth, Z90CRYPT_NUM_APS) != 0)
+ ret = -EFAULT;
+ kfree(qdepth);
+ break;
+
+ case Z90STAT_PERDEV_REQCNT:
+ reqcnt = kmalloc(sizeof(int) * Z90CRYPT_NUM_APS, GFP_KERNEL);
+ if (!reqcnt) {
+ PRINTK("kmalloc for reqcnt failed!\n");
+ ret = -ENOMEM;
+ break;
+ }
+ get_status_perdevice_reqcnt(reqcnt);
+ if (copy_to_user((char __user *) arg, reqcnt,
+ Z90CRYPT_NUM_APS * sizeof(int)) != 0)
+ ret = -EFAULT;
+ kfree(reqcnt);
+ break;
+
+ /* THIS IS DEPRECATED. USE THE NEW STATUS CALLS */
+ case ICAZ90STATUS:
+ if (deprecated_msg_count1 < 20) {
+ PRINTK("deprecated call to ioctl (ICAZ90STATUS)!\n");
+ deprecated_msg_count1++;
+ if (deprecated_msg_count1 == 20)
+ PRINTK("No longer issuing messages related to "
+ "deprecated call to ICAZ90STATUS.\n");
+ }
+
+ pstat = kmalloc(sizeof(struct ica_z90_status), GFP_KERNEL);
+ if (!pstat) {
+ PRINTK("kmalloc for pstat failed!\n");
+ ret = -ENOMEM;
+ break;
+ }
+
+ pstat->totalcount = get_status_totalcount();
+ pstat->leedslitecount = get_status_PCICAcount();
+ pstat->leeds2count = get_status_PCICCcount();
+ pstat->requestqWaitCount = get_status_requestq_count();
+ pstat->pendingqWaitCount = get_status_pendingq_count();
+ pstat->totalOpenCount = get_status_totalopen_count();
+ pstat->cryptoDomain = get_status_domain_index();
+ get_status_status_mask(pstat->status);
+ get_status_qdepth_mask(pstat->qdepth);
+
+ if (copy_to_user((struct ica_z90_status __user *) arg, pstat,
+ sizeof(struct ica_z90_status)) != 0)
+ ret = -EFAULT;
+ kfree(pstat);
+ break;
+
+ /* THIS IS DEPRECATED. USE THE NEW STATUS CALLS */
+ case Z90STAT_PCIXCCCOUNT:
+ if (deprecated_msg_count2 < 20) {
+ PRINTK("deprecated ioctl (Z90STAT_PCIXCCCOUNT)!\n");
+ deprecated_msg_count2++;
+ if (deprecated_msg_count2 == 20)
+ PRINTK("No longer issuing messages about depre"
+ "cated ioctl Z90STAT_PCIXCCCOUNT.\n");
+ }
+
+ tempstat = get_status_PCIXCCcount();
+ if (copy_to_user((int *)arg, &tempstat, sizeof(int)) != 0)
+ ret = -EFAULT;
+ break;
+
+ case Z90QUIESCE:
+ if (current->euid != 0) {
+ PRINTK("QUIESCE fails: euid %d\n",
+ current->euid);
+ ret = -EACCES;
+ } else {
+ PRINTK("QUIESCE device from PID %d\n", PID());
+ quiesce_z90crypt = 1;
+ }
+ break;
+
+ default:
+ /* user passed an invalid IOCTL number */
+ PDEBUG("cmd 0x%08X contains invalid ioctl code\n", cmd);
+ ret = -ENOTTY;
+ break;
+ }
+
+ return ret;
+}
+
+static inline int
+sprintcl(unsigned char *outaddr, unsigned char *addr, unsigned int len)
+{
+ int hl, i;
+
+ hl = 0;
+ for (i = 0; i < len; i++)
+ hl += sprintf(outaddr+hl, "%01x", (unsigned int) addr[i]);
+ hl += sprintf(outaddr+hl, " ");
+
+ return hl;
+}
+
+static inline int
+sprintrw(unsigned char *outaddr, unsigned char *addr, unsigned int len)
+{
+ int hl, inl, c, cx;
+
+ hl = sprintf(outaddr, " ");
+ inl = 0;
+ for (c = 0; c < (len / 16); c++) {
+ hl += sprintcl(outaddr+hl, addr+inl, 16);
+ inl += 16;
+ }
+
+ cx = len%16;
+ if (cx) {
+ hl += sprintcl(outaddr+hl, addr+inl, cx);
+ inl += cx;
+ }
+
+ hl += sprintf(outaddr+hl, "\n");
+
+ return hl;
+}
+
+static inline int
+sprinthx(unsigned char *title, unsigned char *outaddr,
+ unsigned char *addr, unsigned int len)
+{
+ int hl, inl, r, rx;
+
+ hl = sprintf(outaddr, "\n%s\n", title);
+ inl = 0;
+ for (r = 0; r < (len / 64); r++) {
+ hl += sprintrw(outaddr+hl, addr+inl, 64);
+ inl += 64;
+ }
+ rx = len % 64;
+ if (rx) {
+ hl += sprintrw(outaddr+hl, addr+inl, rx);
+ inl += rx;
+ }
+
+ hl += sprintf(outaddr+hl, "\n");
+
+ return hl;
+}
+
+static inline int
+sprinthx4(unsigned char *title, unsigned char *outaddr,
+ unsigned int *array, unsigned int len)
+{
+ int hl, r;
+
+ hl = sprintf(outaddr, "\n%s\n", title);
+
+ for (r = 0; r < len; r++) {
+ if ((r % 8) == 0)
+ hl += sprintf(outaddr+hl, " ");
+ hl += sprintf(outaddr+hl, "%08X ", array[r]);
+ if ((r % 8) == 7)
+ hl += sprintf(outaddr+hl, "\n");
+ }
+
+ hl += sprintf(outaddr+hl, "\n");
+
+ return hl;
+}
+
+static int
+z90crypt_status(char *resp_buff, char **start, off_t offset,
+ int count, int *eof, void *data)
+{
+ unsigned char *workarea;
+ int len;
+
+ /* resp_buff is a page. Use the right half for a work area */
+ workarea = resp_buff+2000;
+ len = 0;
+ len += sprintf(resp_buff+len, "\nz90crypt version: %d.%d.%d\n",
+ z90crypt_VERSION, z90crypt_RELEASE, z90crypt_VARIANT);
+ len += sprintf(resp_buff+len, "Cryptographic domain: %d\n",
+ get_status_domain_index());
+ len += sprintf(resp_buff+len, "Total device count: %d\n",
+ get_status_totalcount());
+ len += sprintf(resp_buff+len, "PCICA count: %d\n",
+ get_status_PCICAcount());
+ len += sprintf(resp_buff+len, "PCICC count: %d\n",
+ get_status_PCICCcount());
+ len += sprintf(resp_buff+len, "PCIXCC MCL2 count: %d\n",
+ get_status_PCIXCCMCL2count());
+ len += sprintf(resp_buff+len, "PCIXCC MCL3 count: %d\n",
+ get_status_PCIXCCMCL3count());
+ len += sprintf(resp_buff+len, "CEX2C count: %d\n",
+ get_status_CEX2Ccount());
+ len += sprintf(resp_buff+len, "requestq count: %d\n",
+ get_status_requestq_count());
+ len += sprintf(resp_buff+len, "pendingq count: %d\n",
+ get_status_pendingq_count());
+ len += sprintf(resp_buff+len, "Total open handles: %d\n\n",
+ get_status_totalopen_count());
+ len += sprinthx(
+ "Online devices: 1: PCICA, 2: PCICC, 3: PCIXCC (MCL2), "
+ "4: PCIXCC (MCL3), 5: CEX2C",
+ resp_buff+len,
+ get_status_status_mask(workarea),
+ Z90CRYPT_NUM_APS);
+ len += sprinthx("Waiting work element counts",
+ resp_buff+len,
+ get_status_qdepth_mask(workarea),
+ Z90CRYPT_NUM_APS);
+ len += sprinthx4(
+ "Per-device successfully completed request counts",
+ resp_buff+len,
+ get_status_perdevice_reqcnt((unsigned int *)workarea),
+ Z90CRYPT_NUM_APS);
+ *eof = 1;
+ memset(workarea, 0, Z90CRYPT_NUM_APS * sizeof(unsigned int));
+ return len;
+}
+
+static inline void
+disable_card(int card_index)
+{
+ struct device *devp;
+
+ devp = LONG2DEVPTR(card_index);
+ if (!devp || devp->user_disabled)
+ return;
+ devp->user_disabled = 1;
+ z90crypt.hdware_info->hdware_mask.user_disabled_count++;
+ if (devp->dev_type == -1)
+ return;
+ z90crypt.hdware_info->type_mask[devp->dev_type].user_disabled_count++;
+}
+
+static inline void
+enable_card(int card_index)
+{
+ struct device *devp;
+
+ devp = LONG2DEVPTR(card_index);
+ if (!devp || !devp->user_disabled)
+ return;
+ devp->user_disabled = 0;
+ z90crypt.hdware_info->hdware_mask.user_disabled_count--;
+ if (devp->dev_type == -1)
+ return;
+ z90crypt.hdware_info->type_mask[devp->dev_type].user_disabled_count--;
+}
+
+static inline int
+scan_char(unsigned char *bf, unsigned int len,
+ unsigned int *offs, unsigned int *p_eof, unsigned char c)
+{
+ unsigned int i, found;
+
+ found = 0;
+ for (i = 0; i < len; i++) {
+ if (bf[i] == c) {
+ found = 1;
+ break;
+ }
+ if (bf[i] == '\0') {
+ *p_eof = 1;
+ break;
+ }
+ if (bf[i] == '\n') {
+ break;
+ }
+ }
+ *offs = i+1;
+ return found;
+}
+
+static inline int
+scan_string(unsigned char *bf, unsigned int len,
+ unsigned int *offs, unsigned int *p_eof, unsigned char *s)
+{
+ unsigned int temp_len, temp_offs, found, eof;
+
+ temp_len = temp_offs = found = eof = 0;
+ while (!eof && !found) {
+ found = scan_char(bf+temp_len, len-temp_len,
+ &temp_offs, &eof, *s);
+
+ temp_len += temp_offs;
+ if (eof) {
+ found = 0;
+ break;
+ }
+
+ if (found) {
+ if (len >= temp_offs+strlen(s)) {
+ found = !strncmp(bf+temp_len-1, s, strlen(s));
+ if (found) {
+ *offs = temp_len+strlen(s)-1;
+ break;
+ }
+ } else {
+ found = 0;
+ *p_eof = 1;
+ break;
+ }
+ }
+ }
+ return found;
+}
+
+static int
+z90crypt_status_write(struct file *file, const char __user *buffer,
+ unsigned long count, void *data)
+{
+ int i, j, len, offs, found, eof;
+ unsigned char *lbuf;
+ unsigned int local_count;
+
+#define LBUFSIZE 600
+ lbuf = kmalloc(LBUFSIZE, GFP_KERNEL);
+ if (!lbuf) {
+ PRINTK("kmalloc failed!\n");
+ return 0;
+ }
+
+ if (count <= 0)
+ return 0;
+
+ local_count = UMIN((unsigned int)count, LBUFSIZE-1);
+
+ if (copy_from_user(lbuf, buffer, local_count) != 0) {
+ kfree(lbuf);
+ return -EFAULT;
+ }
+
+ lbuf[local_count-1] = '\0';
+
+ len = 0;
+ eof = 0;
+ found = 0;
+ while (!eof) {
+ found = scan_string(lbuf+len, local_count-len, &offs, &eof,
+ "Online devices");
+ len += offs;
+ if (found == 1)
+ break;
+ }
+
+ if (eof) {
+ kfree(lbuf);
+ return count;
+ }
+
+ if (found)
+ found = scan_char(lbuf+len, local_count-len, &offs, &eof, '\n');
+
+ if (!found || eof) {
+ kfree(lbuf);
+ return count;
+ }
+
+ len += offs;
+ j = 0;
+ for (i = 0; i < 80; i++) {
+ switch (*(lbuf+len+i)) {
+ case '\t':
+ case ' ':
+ break;
+ case '\n':
+ default:
+ eof = 1;
+ break;
+ case '0':
+ case '1':
+ case '2':
+ case '3':
+ case '4':
+ case '5':
+ j++;
+ break;
+ case 'd':
+ case 'D':
+ disable_card(j);
+ j++;
+ break;
+ case 'e':
+ case 'E':
+ enable_card(j);
+ j++;
+ break;
+ }
+ if (eof)
+ break;
+ }
+
+ kfree(lbuf);
+ return count;
+}
+
+/**
+ * Functions that run under a timer, with no process id
+ *
+ * The task functions:
+ * z90crypt_reader_task
+ * helper_send_work
+ * helper_handle_work_element
+ * helper_receive_rc
+ * z90crypt_config_task
+ * z90crypt_cleanup_task
+ *
+ * Helper functions:
+ * z90crypt_schedule_reader_timer
+ * z90crypt_schedule_reader_task
+ * z90crypt_schedule_config_task
+ * z90crypt_schedule_cleanup_task
+ */
+static inline int
+receive_from_crypto_device(int index, unsigned char *psmid, int *buff_len_p,
+ unsigned char *buff, unsigned char __user **dest_p_p)
+{
+ int dv, rv;
+ struct device *dev_ptr;
+ struct caller *caller_p;
+ struct ica_rsa_modexpo *icaMsg_p;
+ struct list_head *ptr, *tptr;
+
+ memcpy(psmid, NULL_psmid, sizeof(NULL_psmid));
+
+ if (z90crypt.terminating)
+ return REC_FATAL_ERROR;
+
+ caller_p = 0;
+ dev_ptr = z90crypt.device_p[index];
+ rv = 0;
+ do {
+ if (!dev_ptr || dev_ptr->disabled) {
+ rv = REC_NO_WORK; // a disabled device can't return work
+ break;
+ }
+ if (dev_ptr->dev_self_x != index) {
+ PRINTKC("Corrupt dev ptr\n");
+ z90crypt.terminating = 1;
+ rv = REC_FATAL_ERROR;
+ break;
+ }
+ if (!dev_ptr->dev_resp_l || !dev_ptr->dev_resp_p) {
+ dv = DEV_REC_EXCEPTION;
+ PRINTK("dev_resp_l = %d, dev_resp_p = %p\n",
+ dev_ptr->dev_resp_l, dev_ptr->dev_resp_p);
+ } else {
+ PDEBUG("Dequeue called for device %d\n", index);
+ dv = receive_from_AP(index, z90crypt.cdx,
+ dev_ptr->dev_resp_l,
+ dev_ptr->dev_resp_p, psmid);
+ }
+ switch (dv) {
+ case DEV_REC_EXCEPTION:
+ rv = REC_FATAL_ERROR;
+ z90crypt.terminating = 1;
+ PRINTKC("Exception in receive from device %d\n",
+ index);
+ break;
+ case DEV_ONLINE:
+ rv = 0;
+ break;
+ case DEV_EMPTY:
+ rv = REC_EMPTY;
+ break;
+ case DEV_NO_WORK:
+ rv = REC_NO_WORK;
+ break;
+ case DEV_BAD_MESSAGE:
+ case DEV_GONE:
+ case REC_HARDWAR_ERR:
+ default:
+ rv = REC_NO_RESPONSE;
+ break;
+ }
+ if (rv)
+ break;
+ if (dev_ptr->dev_caller_count <= 0) {
+ rv = REC_USER_GONE;
+ break;
+ }
+
+ list_for_each_safe(ptr, tptr, &dev_ptr->dev_caller_list) {
+ caller_p = list_entry(ptr, struct caller, caller_liste);
+ if (!memcmp(caller_p->caller_id, psmid,
+ sizeof(caller_p->caller_id))) {
+ if (!list_empty(&caller_p->caller_liste)) {
+ list_del_init(ptr);
+ dev_ptr->dev_caller_count--;
+ break;
+ }
+ }
+ caller_p = 0;
+ }
+ if (!caller_p) {
+ PRINTKW("Unable to locate PSMID %02X%02X%02X%02X%02X"
+ "%02X%02X%02X in device list\n",
+ psmid[0], psmid[1], psmid[2], psmid[3],
+ psmid[4], psmid[5], psmid[6], psmid[7]);
+ rv = REC_USER_GONE;
+ break;
+ }
+
+ PDEBUG("caller_p after successful receive: %p\n", caller_p);
+ rv = convert_response(dev_ptr->dev_resp_p,
+ caller_p->caller_buf_p, buff_len_p, buff);
+ switch (rv) {
+ case REC_USE_PCICA:
+ break;
+ case REC_OPERAND_INV:
+ case REC_OPERAND_SIZE:
+ case REC_EVEN_MOD:
+ case REC_INVALID_PAD:
+ PDEBUG("device %d: 'user error' %d\n", index, rv);
+ break;
+ case WRONG_DEVICE_TYPE:
+ case REC_HARDWAR_ERR:
+ case REC_BAD_MESSAGE:
+ PRINTKW("device %d: hardware error %d\n", index, rv);
+ rv = REC_NO_RESPONSE;
+ break;
+ default:
+ PDEBUG("device %d: rv = %d\n", index, rv);
+ break;
+ }
+ } while (0);
+
+ switch (rv) {
+ case 0:
+ PDEBUG("Successful receive from device %d\n", index);
+ icaMsg_p = (struct ica_rsa_modexpo *)caller_p->caller_buf_p;
+ *dest_p_p = icaMsg_p->outputdata;
+ if (*buff_len_p == 0)
+ PRINTK("Zero *buff_len_p\n");
+ break;
+ case REC_NO_RESPONSE:
+ PRINTKW("Removing device %d from availability\n", index);
+ remove_device(dev_ptr);
+ break;
+ }
+
+ if (caller_p)
+ unbuild_caller(dev_ptr, caller_p);
+
+ return rv;
+}
+
+static inline void
+helper_send_work(int index)
+{
+ struct work_element *rq_p;
+ int rv;
+
+ if (list_empty(&request_list))
+ return;
+ requestq_count--;
+ rq_p = list_entry(request_list.next, struct work_element, liste);
+ list_del_init(&rq_p->liste);
+ rq_p->audit[1] |= FP_REMREQUEST;
+ if (rq_p->devtype == SHRT2DEVPTR(index)->dev_type) {
+ rq_p->devindex = SHRT2LONG(index);
+ rv = send_to_crypto_device(rq_p);
+ if (rv == 0) {
+ rq_p->requestsent = jiffies;
+ rq_p->audit[0] |= FP_SENT;
+ list_add_tail(&rq_p->liste, &pending_list);
+ ++pendingq_count;
+ rq_p->audit[0] |= FP_PENDING;
+ } else {
+ switch (rv) {
+ case REC_OPERAND_INV:
+ case REC_OPERAND_SIZE:
+ case REC_EVEN_MOD:
+ case REC_INVALID_PAD:
+ rq_p->retcode = -EINVAL;
+ break;
+ case SEN_NOT_AVAIL:
+ case SEN_RETRY:
+ case REC_NO_RESPONSE:
+ default:
+ if (z90crypt.mask.st_count > 1)
+ rq_p->retcode =
+ -ERESTARTSYS;
+ else
+ rq_p->retcode = -ENODEV;
+ break;
+ }
+ rq_p->status[0] |= STAT_FAILED;
+ rq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&rq_p->alarmrung, 1);
+ wake_up(&rq_p->waitq);
+ }
+ } else {
+ if (z90crypt.mask.st_count > 1)
+ rq_p->retcode = -ERESTARTSYS;
+ else
+ rq_p->retcode = -ENODEV;
+ rq_p->status[0] |= STAT_FAILED;
+ rq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&rq_p->alarmrung, 1);
+ wake_up(&rq_p->waitq);
+ }
+}
+
+static inline void
+helper_handle_work_element(int index, unsigned char psmid[8], int rc,
+ int buff_len, unsigned char *buff,
+ unsigned char __user *resp_addr)
+{
+ struct work_element *pq_p;
+ struct list_head *lptr, *tptr;
+
+ pq_p = 0;
+ list_for_each_safe(lptr, tptr, &pending_list) {
+ pq_p = list_entry(lptr, struct work_element, liste);
+ if (!memcmp(pq_p->caller_id, psmid, sizeof(pq_p->caller_id))) {
+ list_del_init(lptr);
+ pendingq_count--;
+ pq_p->audit[1] |= FP_NOTPENDING;
+ break;
+ }
+ pq_p = 0;
+ }
+
+ if (!pq_p) {
+ PRINTK("device %d has work but no caller exists on pending Q\n",
+ SHRT2LONG(index));
+ return;
+ }
+
+ switch (rc) {
+ case 0:
+ pq_p->resp_buff_size = buff_len;
+ pq_p->audit[1] |= FP_RESPSIZESET;
+ if (buff_len) {
+ pq_p->resp_addr = resp_addr;
+ pq_p->audit[1] |= FP_RESPADDRCOPIED;
+ memcpy(pq_p->resp_buff, buff, buff_len);
+ pq_p->audit[1] |= FP_RESPBUFFCOPIED;
+ }
+ break;
+ case REC_OPERAND_INV:
+ case REC_OPERAND_SIZE:
+ case REC_EVEN_MOD:
+ case REC_INVALID_PAD:
+ PDEBUG("-EINVAL after application error %d\n", rc);
+ pq_p->retcode = -EINVAL;
+ pq_p->status[0] |= STAT_FAILED;
+ break;
+ case REC_USE_PCICA:
+ pq_p->retcode = -ERESTARTSYS;
+ pq_p->status[0] |= STAT_FAILED;
+ break;
+ case REC_NO_RESPONSE:
+ default:
+ if (z90crypt.mask.st_count > 1)
+ pq_p->retcode = -ERESTARTSYS;
+ else
+ pq_p->retcode = -ENODEV;
+ pq_p->status[0] |= STAT_FAILED;
+ break;
+ }
+ if ((pq_p->status[0] != STAT_FAILED) || (pq_p->retcode != -ERELEASED)) {
+ pq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&pq_p->alarmrung, 1);
+ wake_up(&pq_p->waitq);
+ }
+}
+
+/**
+ * return TRUE if the work element should be removed from the queue
+ */
+static inline int
+helper_receive_rc(int index, int *rc_p)
+{
+ switch (*rc_p) {
+ case 0:
+ case REC_OPERAND_INV:
+ case REC_OPERAND_SIZE:
+ case REC_EVEN_MOD:
+ case REC_INVALID_PAD:
+ case REC_USE_PCICA:
+ break;
+
+ case REC_BUSY:
+ case REC_NO_WORK:
+ case REC_EMPTY:
+ case REC_RETRY_DEV:
+ case REC_FATAL_ERROR:
+ return 0;
+
+ case REC_NO_RESPONSE:
+ break;
+
+ default:
+ PRINTK("rc %d, device %d converted to REC_NO_RESPONSE\n",
+ *rc_p, SHRT2LONG(index));
+ *rc_p = REC_NO_RESPONSE;
+ break;
+ }
+ return 1;
+}
+
+static inline void
+z90crypt_schedule_reader_timer(void)
+{
+ if (timer_pending(&reader_timer))
+ return;
+ if (mod_timer(&reader_timer, jiffies+(READERTIME*HZ/1000)) != 0)
+ PRINTK("Timer pending while modifying reader timer\n");
+}
+
+static void
+z90crypt_reader_task(unsigned long ptr)
+{
+ int workavail, index, rc, buff_len;
+ unsigned char psmid[8];
+ unsigned char __user *resp_addr;
+ static unsigned char buff[1024];
+
+ /**
+ * we use workavail = 2 to ensure 2 passes with nothing dequeued before
+ * exiting the loop. If (pendingq_count+requestq_count) == 0 after the
+ * loop, there is no work remaining on the queues.
+ */
+ resp_addr = 0;
+ workavail = 2;
+ buff_len = 0;
+ while (workavail) {
+ workavail--;
+ rc = 0;
+ spin_lock_irq(&queuespinlock);
+ memset(buff, 0x00, sizeof(buff));
+
+ /* Dequeue once from each device in round robin. */
+ for (index = 0; index < z90crypt.mask.st_count; index++) {
+ PDEBUG("About to receive.\n");
+ rc = receive_from_crypto_device(SHRT2LONG(index),
+ psmid,
+ &buff_len,
+ buff,
+ &resp_addr);
+ PDEBUG("Dequeued: rc = %d.\n", rc);
+
+ if (helper_receive_rc(index, &rc)) {
+ if (rc != REC_NO_RESPONSE) {
+ helper_send_work(index);
+ workavail = 2;
+ }
+
+ helper_handle_work_element(index, psmid, rc,
+ buff_len, buff,
+ resp_addr);
+ }
+
+ if (rc == REC_FATAL_ERROR)
+ PRINTKW("REC_FATAL_ERROR from device %d!\n",
+ SHRT2LONG(index));
+ }
+ spin_unlock_irq(&queuespinlock);
+ }
+
+ if (pendingq_count + requestq_count)
+ z90crypt_schedule_reader_timer();
+}
+
+static inline void
+z90crypt_schedule_config_task(unsigned int expiration)
+{
+ if (timer_pending(&config_timer))
+ return;
+ if (mod_timer(&config_timer, jiffies+(expiration*HZ)) != 0)
+ PRINTK("Timer pending while modifying config timer\n");
+}
+
+static void
+z90crypt_config_task(unsigned long ptr)
+{
+ int rc;
+
+ PDEBUG("jiffies %ld\n", jiffies);
+
+ if ((rc = refresh_z90crypt(&z90crypt.cdx)))
+ PRINTK("Error %d detected in refresh_z90crypt.\n", rc);
+ /* If return was fatal, don't bother reconfiguring */
+ if ((rc != TSQ_FATAL_ERROR) && (rc != RSQ_FATAL_ERROR))
+ z90crypt_schedule_config_task(CONFIGTIME);
+}
+
+static inline void
+z90crypt_schedule_cleanup_task(void)
+{
+ if (timer_pending(&cleanup_timer))
+ return;
+ if (mod_timer(&cleanup_timer, jiffies+(CLEANUPTIME*HZ)) != 0)
+ PRINTK("Timer pending while modifying cleanup timer\n");
+}
+
+static inline void
+helper_drain_queues(void)
+{
+ struct work_element *pq_p;
+ struct list_head *lptr, *tptr;
+
+ list_for_each_safe(lptr, tptr, &pending_list) {
+ pq_p = list_entry(lptr, struct work_element, liste);
+ pq_p->retcode = -ENODEV;
+ pq_p->status[0] |= STAT_FAILED;
+ unbuild_caller(LONG2DEVPTR(pq_p->devindex),
+ (struct caller *)pq_p->requestptr);
+ list_del_init(lptr);
+ pendingq_count--;
+ pq_p->audit[1] |= FP_NOTPENDING;
+ pq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&pq_p->alarmrung, 1);
+ wake_up(&pq_p->waitq);
+ }
+
+ list_for_each_safe(lptr, tptr, &request_list) {
+ pq_p = list_entry(lptr, struct work_element, liste);
+ pq_p->retcode = -ENODEV;
+ pq_p->status[0] |= STAT_FAILED;
+ list_del_init(lptr);
+ requestq_count--;
+ pq_p->audit[1] |= FP_REMREQUEST;
+ pq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&pq_p->alarmrung, 1);
+ wake_up(&pq_p->waitq);
+ }
+}
+
+static inline void
+helper_timeout_requests(void)
+{
+ struct work_element *pq_p;
+ struct list_head *lptr, *tptr;
+ long timelimit;
+
+ timelimit = jiffies - (CLEANUPTIME * HZ);
+ /* The list is in strict chronological order */
+ list_for_each_safe(lptr, tptr, &pending_list) {
+ pq_p = list_entry(lptr, struct work_element, liste);
+ if (pq_p->requestsent >= timelimit)
+ break;
+ PRINTKW("Purging(PQ) PSMID %02X%02X%02X%02X%02X%02X%02X%02X\n",
+ ((struct caller *)pq_p->requestptr)->caller_id[0],
+ ((struct caller *)pq_p->requestptr)->caller_id[1],
+ ((struct caller *)pq_p->requestptr)->caller_id[2],
+ ((struct caller *)pq_p->requestptr)->caller_id[3],
+ ((struct caller *)pq_p->requestptr)->caller_id[4],
+ ((struct caller *)pq_p->requestptr)->caller_id[5],
+ ((struct caller *)pq_p->requestptr)->caller_id[6],
+ ((struct caller *)pq_p->requestptr)->caller_id[7]);
+ pq_p->retcode = -ETIMEOUT;
+ pq_p->status[0] |= STAT_FAILED;
+ /* get this off any caller queue it may be on */
+ unbuild_caller(LONG2DEVPTR(pq_p->devindex),
+ (struct caller *) pq_p->requestptr);
+ list_del_init(lptr);
+ pendingq_count--;
+ pq_p->audit[1] |= FP_TIMEDOUT;
+ pq_p->audit[1] |= FP_NOTPENDING;
+ pq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&pq_p->alarmrung, 1);
+ wake_up(&pq_p->waitq);
+ }
+
+ /**
+ * If pending count is zero, items left on the request queue may
+ * never be processed.
+ */
+ if (pendingq_count <= 0) {
+ list_for_each_safe(lptr, tptr, &request_list) {
+ pq_p = list_entry(lptr, struct work_element, liste);
+ if (pq_p->requestsent >= timelimit)
+ break;
+ PRINTKW("Purging(RQ) PSMID %02X%02X%02X%02X%02X%02X%02X%02X\n",
+ ((struct caller *)pq_p->requestptr)->caller_id[0],
+ ((struct caller *)pq_p->requestptr)->caller_id[1],
+ ((struct caller *)pq_p->requestptr)->caller_id[2],
+ ((struct caller *)pq_p->requestptr)->caller_id[3],
+ ((struct caller *)pq_p->requestptr)->caller_id[4],
+ ((struct caller *)pq_p->requestptr)->caller_id[5],
+ ((struct caller *)pq_p->requestptr)->caller_id[6],
+ ((struct caller *)pq_p->requestptr)->caller_id[7]);
+ pq_p->retcode = -ETIMEOUT;
+ pq_p->status[0] |= STAT_FAILED;
+ list_del_init(lptr);
+ requestq_count--;
+ pq_p->audit[1] |= FP_TIMEDOUT;
+ pq_p->audit[1] |= FP_REMREQUEST;
+ pq_p->audit[1] |= FP_AWAKENING;
+ atomic_set(&pq_p->alarmrung, 1);
+ wake_up(&pq_p->waitq);
+ }
+ }
+}
+
+static void
+z90crypt_cleanup_task(unsigned long ptr)
+{
+ PDEBUG("jiffies %ld\n", jiffies);
+ spin_lock_irq(&queuespinlock);
+ if (z90crypt.mask.st_count <= 0) // no devices!
+ helper_drain_queues();
+ else
+ helper_timeout_requests();
+ spin_unlock_irq(&queuespinlock);
+ z90crypt_schedule_cleanup_task();
+}
+
+static void
+z90crypt_schedule_reader_task(unsigned long ptr)
+{
+ tasklet_schedule(&reader_tasklet);
+}
+
+/**
+ * Lowlevel Functions:
+ *
+ * create_z90crypt: creates and initializes basic data structures
+ * refresh_z90crypt: re-initializes basic data structures
+ * find_crypto_devices: returns a count and mask of hardware status
+ * create_crypto_device: builds the descriptor for a device
+ * destroy_crypto_device: unallocates the descriptor for a device
+ * destroy_z90crypt: drains all work, unallocates structs
+ */
+
+/**
+ * build the z90crypt root structure using the given domain index
+ */
+static int
+create_z90crypt(int *cdx_p)
+{
+ struct hdware_block *hdware_blk_p;
+
+ memset(&z90crypt, 0x00, sizeof(struct z90crypt));
+ z90crypt.domain_established = 0;
+ z90crypt.len = sizeof(struct z90crypt);
+ z90crypt.max_count = Z90CRYPT_NUM_DEVS;
+ z90crypt.cdx = *cdx_p;
+
+ hdware_blk_p = (struct hdware_block *)
+ kmalloc(sizeof(struct hdware_block), GFP_ATOMIC);
+ if (!hdware_blk_p) {
+ PDEBUG("kmalloc for hardware block failed\n");
+ return ENOMEM;
+ }
+ memset(hdware_blk_p, 0x00, sizeof(struct hdware_block));
+ z90crypt.hdware_info = hdware_blk_p;
+
+ return 0;
+}
+
+static inline int
+helper_scan_devices(int cdx_array[16], int *cdx_p, int *correct_cdx_found)
+{
+ enum hdstat hd_stat;
+ int q_depth, dev_type;
+ int indx, chkdom, numdomains;
+
+ q_depth = dev_type = numdomains = 0;
+ for (chkdom = 0; chkdom <= 15; cdx_array[chkdom++] = -1);
+ for (indx = 0; indx < z90crypt.max_count; indx++) {
+ hd_stat = HD_NOT_THERE;
+ numdomains = 0;
+ for (chkdom = 0; chkdom <= 15; chkdom++) {
+ hd_stat = query_online(indx, chkdom, MAX_RESET,
+ &q_depth, &dev_type);
+ if (hd_stat == HD_TSQ_EXCEPTION) {
+ z90crypt.terminating = 1;
+ PRINTKC("exception taken!\n");
+ break;
+ }
+ if (hd_stat == HD_ONLINE) {
+ cdx_array[numdomains++] = chkdom;
+ if (*cdx_p == chkdom) {
+ *correct_cdx_found = 1;
+ break;
+ }
+ }
+ }
+ if ((*correct_cdx_found == 1) || (numdomains != 0))
+ break;
+ if (z90crypt.terminating)
+ break;
+ }
+ return numdomains;
+}
+
+static inline int
+probe_crypto_domain(int *cdx_p)
+{
+ int cdx_array[16];
+ char cdx_array_text[53], temp[5];
+ int correct_cdx_found, numdomains;
+
+ correct_cdx_found = 0;
+ numdomains = helper_scan_devices(cdx_array, cdx_p, &correct_cdx_found);
+
+ if (z90crypt.terminating)
+ return TSQ_FATAL_ERROR;
+
+ if (correct_cdx_found)
+ return 0;
+
+ if (numdomains == 0) {
+ PRINTKW("Unable to find crypto domain: No devices found\n");
+ return Z90C_NO_DEVICES;
+ }
+
+ if (numdomains == 1) {
+ if (*cdx_p == -1) {
+ *cdx_p = cdx_array[0];
+ return 0;
+ }
+ PRINTKW("incorrect domain: specified = %d, found = %d\n",
+ *cdx_p, cdx_array[0]);
+ return Z90C_INCORRECT_DOMAIN;
+ }
+
+ numdomains--;
+ sprintf(cdx_array_text, "%d", cdx_array[numdomains]);
+ while (numdomains) {
+ numdomains--;
+ sprintf(temp, ", %d", cdx_array[numdomains]);
+ strcat(cdx_array_text, temp);
+ }
+
+ PRINTKW("ambiguous domain detected: specified = %d, found array = %s\n",
+ *cdx_p, cdx_array_text);
+ return Z90C_AMBIGUOUS_DOMAIN;
+}
+
+static int
+refresh_z90crypt(int *cdx_p)
+{
+ int i, j, indx, rv;
+ static struct status local_mask;
+ struct device *devPtr;
+ unsigned char oldStat, newStat;
+ int return_unchanged;
+
+ if (z90crypt.len != sizeof(z90crypt))
+ return ENOTINIT;
+ if (z90crypt.terminating)
+ return TSQ_FATAL_ERROR;
+ rv = 0;
+ if (!z90crypt.hdware_info->hdware_mask.st_count &&
+ !z90crypt.domain_established) {
+ rv = probe_crypto_domain(cdx_p);
+ if (z90crypt.terminating)
+ return TSQ_FATAL_ERROR;
+ if (rv == Z90C_NO_DEVICES)
+ return 0; // try later
+ if (rv)
+ return rv;
+ z90crypt.cdx = *cdx_p;
+ z90crypt.domain_established = 1;
+ }
+ rv = find_crypto_devices(&local_mask);
+ if (rv) {
+ PRINTK("find crypto devices returned %d\n", rv);
+ return rv;
+ }
+ if (!memcmp(&local_mask, &z90crypt.hdware_info->hdware_mask,
+ sizeof(struct status))) {
+ return_unchanged = 1;
+ for (i = 0; i < Z90CRYPT_NUM_TYPES; i++) {
+ /**
+ * Check for disabled cards. If any device is marked
+ * disabled, destroy it.
+ */
+ for (j = 0;
+ j < z90crypt.hdware_info->type_mask[i].st_count;
+ j++) {
+ indx = z90crypt.hdware_info->type_x_addr[i].
+ device_index[j];
+ devPtr = z90crypt.device_p[indx];
+ if (devPtr && devPtr->disabled) {
+ local_mask.st_mask[indx] = HD_NOT_THERE;
+ return_unchanged = 0;
+ }
+ }
+ }
+ if (return_unchanged == 1)
+ return 0;
+ }
+
+ spin_lock_irq(&queuespinlock);
+ for (i = 0; i < z90crypt.max_count; i++) {
+ oldStat = z90crypt.hdware_info->hdware_mask.st_mask[i];
+ newStat = local_mask.st_mask[i];
+ if ((oldStat == HD_ONLINE) && (newStat != HD_ONLINE))
+ destroy_crypto_device(i);
+ else if ((oldStat != HD_ONLINE) && (newStat == HD_ONLINE)) {
+ rv = create_crypto_device(i);
+ if (rv >= REC_FATAL_ERROR)
+ return rv;
+ if (rv != 0) {
+ local_mask.st_mask[i] = HD_NOT_THERE;
+ local_mask.st_count--;
+ }
+ }
+ }
+ memcpy(z90crypt.hdware_info->hdware_mask.st_mask, local_mask.st_mask,
+ sizeof(local_mask.st_mask));
+ z90crypt.hdware_info->hdware_mask.st_count = local_mask.st_count;
+ z90crypt.hdware_info->hdware_mask.disabled_count =
+ local_mask.disabled_count;
+ refresh_index_array(&z90crypt.mask, &z90crypt.overall_device_x);
+ for (i = 0; i < Z90CRYPT_NUM_TYPES; i++)
+ refresh_index_array(&(z90crypt.hdware_info->type_mask[i]),
+ &(z90crypt.hdware_info->type_x_addr[i]));
+ spin_unlock_irq(&queuespinlock);
+
+ return rv;
+}
+
+static int
+find_crypto_devices(struct status *deviceMask)
+{
+ int i, q_depth, dev_type;
+ enum hdstat hd_stat;
+
+ deviceMask->st_count = 0;
+ deviceMask->disabled_count = 0;
+ deviceMask->user_disabled_count = 0;
+
+ for (i = 0; i < z90crypt.max_count; i++) {
+ hd_stat = query_online(i, z90crypt.cdx, MAX_RESET, &q_depth,
+ &dev_type);
+ if (hd_stat == HD_TSQ_EXCEPTION) {
+ z90crypt.terminating = 1;
+ PRINTKC("Exception during probe for crypto devices\n");
+ return TSQ_FATAL_ERROR;
+ }
+ deviceMask->st_mask[i] = hd_stat;
+ if (hd_stat == HD_ONLINE) {
+ PDEBUG("Got an online crypto!: %d\n", i);
+ PDEBUG("Got a queue depth of %d\n", q_depth);
+ PDEBUG("Got a device type of %d\n", dev_type);
+ if (q_depth <= 0)
+ return TSQ_FATAL_ERROR;
+ deviceMask->st_count++;
+ z90crypt.q_depth_array[i] = q_depth;
+ z90crypt.dev_type_array[i] = dev_type;
+ }
+ }
+
+ return 0;
+}
+
+static int
+refresh_index_array(struct status *status_str, struct device_x *index_array)
+{
+ int i, count;
+ enum devstat stat;
+
+ i = -1;
+ count = 0;
+ do {
+ stat = status_str->st_mask[++i];
+ if (stat == DEV_ONLINE)
+ index_array->device_index[count++] = i;
+ } while ((i < Z90CRYPT_NUM_DEVS) && (count < status_str->st_count));
+
+ return count;
+}
+
+static int
+create_crypto_device(int index)
+{
+ int rv, devstat, total_size;
+ struct device *dev_ptr;
+ struct status *type_str_p;
+ int deviceType;
+
+ dev_ptr = z90crypt.device_p[index];
+ if (!dev_ptr) {
+ total_size = sizeof(struct device) +
+ z90crypt.q_depth_array[index] * sizeof(int);
+
+ dev_ptr = (struct device *) kmalloc(total_size, GFP_ATOMIC);
+ if (!dev_ptr) {
+ PRINTK("kmalloc device %d failed\n", index);
+ return ENOMEM;
+ }
+ memset(dev_ptr, 0, total_size);
+ dev_ptr->dev_resp_p = kmalloc(MAX_RESPONSE_SIZE, GFP_ATOMIC);
+ if (!dev_ptr->dev_resp_p) {
+ kfree(dev_ptr);
+ PRINTK("kmalloc device %d rec buffer failed\n", index);
+ return ENOMEM;
+ }
+ dev_ptr->dev_resp_l = MAX_RESPONSE_SIZE;
+ INIT_LIST_HEAD(&(dev_ptr->dev_caller_list));
+ }
+
+ devstat = reset_device(index, z90crypt.cdx, MAX_RESET);
+ if (devstat == DEV_RSQ_EXCEPTION) {
+ PRINTK("exception during reset device %d\n", index);
+ kfree(dev_ptr->dev_resp_p);
+ kfree(dev_ptr);
+ return RSQ_FATAL_ERROR;
+ }
+ if (devstat == DEV_ONLINE) {
+ dev_ptr->dev_self_x = index;
+ dev_ptr->dev_type = z90crypt.dev_type_array[index];
+ if (dev_ptr->dev_type == NILDEV) {
+ rv = probe_device_type(dev_ptr);
+ if (rv) {
+ PRINTK("rv = %d from probe_device_type %d\n",
+ rv, index);
+ kfree(dev_ptr->dev_resp_p);
+ kfree(dev_ptr);
+ return rv;
+ }
+ }
+ if (dev_ptr->dev_type == PCIXCC_UNK) {
+ rv = probe_PCIXCC_type(dev_ptr);
+ if (rv) {
+ PRINTK("rv = %d from probe_PCIXCC_type %d\n",
+ rv, index);
+ kfree(dev_ptr->dev_resp_p);
+ kfree(dev_ptr);
+ return rv;
+ }
+ }
+ deviceType = dev_ptr->dev_type;
+ z90crypt.dev_type_array[index] = deviceType;
+ if (deviceType == PCICA)
+ z90crypt.hdware_info->device_type_array[index] = 1;
+ else if (deviceType == PCICC)
+ z90crypt.hdware_info->device_type_array[index] = 2;
+ else if (deviceType == PCIXCC_MCL2)
+ z90crypt.hdware_info->device_type_array[index] = 3;
+ else if (deviceType == PCIXCC_MCL3)
+ z90crypt.hdware_info->device_type_array[index] = 4;
+ else if (deviceType == CEX2C)
+ z90crypt.hdware_info->device_type_array[index] = 5;
+ else
+ z90crypt.hdware_info->device_type_array[index] = -1;
+ }
+
+ /**
+ * 'q_depth' returned by the hardware is one less than
+ * the actual depth
+ */
+ dev_ptr->dev_q_depth = z90crypt.q_depth_array[index];
+ dev_ptr->dev_type = z90crypt.dev_type_array[index];
+ dev_ptr->dev_stat = devstat;
+ dev_ptr->disabled = 0;
+ z90crypt.device_p[index] = dev_ptr;
+
+ if (devstat == DEV_ONLINE) {
+ if (z90crypt.mask.st_mask[index] != DEV_ONLINE) {
+ z90crypt.mask.st_mask[index] = DEV_ONLINE;
+ z90crypt.mask.st_count++;
+ }
+ deviceType = dev_ptr->dev_type;
+ type_str_p = &z90crypt.hdware_info->type_mask[deviceType];
+ if (type_str_p->st_mask[index] != DEV_ONLINE) {
+ type_str_p->st_mask[index] = DEV_ONLINE;
+ type_str_p->st_count++;
+ }
+ }
+
+ return 0;
+}
+
+static int
+destroy_crypto_device(int index)
+{
+ struct device *dev_ptr;
+ int t, disabledFlag;
+
+ dev_ptr = z90crypt.device_p[index];
+
+ /* remember device type; get rid of device struct */
+ if (dev_ptr) {
+ disabledFlag = dev_ptr->disabled;
+ t = dev_ptr->dev_type;
+ if (dev_ptr->dev_resp_p)
+ kfree(dev_ptr->dev_resp_p);
+ kfree(dev_ptr);
+ } else {
+ disabledFlag = 0;
+ t = -1;
+ }
+ z90crypt.device_p[index] = 0;
+
+ /* if the type is valid, remove the device from the type_mask */
+ if ((t != -1) && z90crypt.hdware_info->type_mask[t].st_mask[index]) {
+ z90crypt.hdware_info->type_mask[t].st_mask[index] = 0x00;
+ z90crypt.hdware_info->type_mask[t].st_count--;
+ if (disabledFlag == 1)
+ z90crypt.hdware_info->type_mask[t].disabled_count--;
+ }
+ if (z90crypt.mask.st_mask[index] != DEV_GONE) {
+ z90crypt.mask.st_mask[index] = DEV_GONE;
+ z90crypt.mask.st_count--;
+ }
+ z90crypt.hdware_info->device_type_array[index] = 0;
+
+ return 0;
+}
+
+static void
+destroy_z90crypt(void)
+{
+ int i;
+ for (i = 0; i < z90crypt.max_count; i++)
+ if (z90crypt.device_p[i])
+ destroy_crypto_device(i);
+ if (z90crypt.hdware_info)
+ kfree((void *)z90crypt.hdware_info);
+ memset((void *)&z90crypt, 0, sizeof(z90crypt));
+}
+
+static unsigned char static_testmsg[384] = {
+0x00,0x00,0x00,0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07,0x08,0x00,0x06,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x58,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x01,0x00,0x43,0x43,
+0x41,0x2d,0x41,0x50,0x50,0x4c,0x20,0x20,0x20,0x01,0x01,0x01,0x00,0x00,0x00,0x00,
+0x50,0x4b,0x00,0x00,0x00,0x00,0x01,0x1c,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x05,0xb8,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x70,0x00,0x41,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x54,0x32,
+0x01,0x00,0xa0,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0xb8,0x05,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x0a,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x08,0x00,0x49,0x43,0x53,0x46,
+0x20,0x20,0x20,0x20,0x50,0x4b,0x0a,0x00,0x50,0x4b,0x43,0x53,0x2d,0x31,0x2e,0x32,
+0x37,0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x99,0x00,0x11,0x22,0x33,0x44,
+0x55,0x66,0x77,0x88,0x99,0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x99,0x00,
+0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x99,0x00,0x11,0x22,0x33,0x44,0x55,0x66,
+0x77,0x88,0x99,0x00,0x11,0x22,0x33,0x5d,0x00,0x5b,0x00,0x77,0x88,0x1e,0x00,0x00,
+0x57,0x00,0x00,0x00,0x00,0x04,0x00,0x00,0x4f,0x00,0x00,0x00,0x03,0x02,0x00,0x00,
+0x40,0x01,0x00,0x01,0xce,0x02,0x68,0x2d,0x5f,0xa9,0xde,0x0c,0xf6,0xd2,0x7b,0x58,
+0x4b,0xf9,0x28,0x68,0x3d,0xb4,0xf4,0xef,0x78,0xd5,0xbe,0x66,0x63,0x42,0xef,0xf8,
+0xfd,0xa4,0xf8,0xb0,0x8e,0x29,0xc2,0xc9,0x2e,0xd8,0x45,0xb8,0x53,0x8c,0x6f,0x4e,
+0x72,0x8f,0x6c,0x04,0x9c,0x88,0xfc,0x1e,0xc5,0x83,0x55,0x57,0xf7,0xdd,0xfd,0x4f,
+0x11,0x36,0x95,0x5d,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00
+};
+
+static int
+probe_device_type(struct device *devPtr)
+{
+ int rv, dv, i, index, length;
+ unsigned char psmid[8];
+ static unsigned char loc_testmsg[sizeof(static_testmsg)];
+
+ index = devPtr->dev_self_x;
+ rv = 0;
+ do {
+ memcpy(loc_testmsg, static_testmsg, sizeof(static_testmsg));
+ length = sizeof(static_testmsg) - 24;
+ /* the -24 allows for the header */
+ dv = send_to_AP(index, z90crypt.cdx, length, loc_testmsg);
+ if (dv) {
+ PDEBUG("dv returned by send during probe: %d\n", dv);
+ if (dv == DEV_SEN_EXCEPTION) {
+ rv = SEN_FATAL_ERROR;
+ PRINTKC("exception in send to AP %d\n", index);
+ break;
+ }
+ PDEBUG("return value from send_to_AP: %d\n", rv);
+ switch (dv) {
+ case DEV_GONE:
+ PDEBUG("dev %d not available\n", index);
+ rv = SEN_NOT_AVAIL;
+ break;
+ case DEV_ONLINE:
+ rv = 0;
+ break;
+ case DEV_EMPTY:
+ rv = SEN_NOT_AVAIL;
+ break;
+ case DEV_NO_WORK:
+ rv = SEN_FATAL_ERROR;
+ break;
+ case DEV_BAD_MESSAGE:
+ rv = SEN_USER_ERROR;
+ break;
+ case DEV_QUEUE_FULL:
+ rv = SEN_QUEUE_FULL;
+ break;
+ default:
+ PRINTK("unknown dv=%d for dev %d\n", dv, index);
+ rv = SEN_NOT_AVAIL;
+ break;
+ }
+ }
+
+ if (rv)
+ break;
+
+ for (i = 0; i < 6; i++) {
+ mdelay(300);
+ dv = receive_from_AP(index, z90crypt.cdx,
+ devPtr->dev_resp_l,
+ devPtr->dev_resp_p, psmid);
+ PDEBUG("dv returned by DQ = %d\n", dv);
+ if (dv == DEV_REC_EXCEPTION) {
+ rv = REC_FATAL_ERROR;
+ PRINTKC("exception in dequeue %d\n",
+ index);
+ break;
+ }
+ switch (dv) {
+ case DEV_ONLINE:
+ rv = 0;
+ break;
+ case DEV_EMPTY:
+ rv = REC_EMPTY;
+ break;
+ case DEV_NO_WORK:
+ rv = REC_NO_WORK;
+ break;
+ case DEV_BAD_MESSAGE:
+ case DEV_GONE:
+ default:
+ rv = REC_NO_RESPONSE;
+ break;
+ }
+ if ((rv != 0) && (rv != REC_NO_WORK))
+ break;
+ if (rv == 0)
+ break;
+ }
+ if (rv)
+ break;
+ rv = (devPtr->dev_resp_p[0] == 0x00) &&
+ (devPtr->dev_resp_p[1] == 0x86);
+ if (rv)
+ devPtr->dev_type = PCICC;
+ else
+ devPtr->dev_type = PCICA;
+ rv = 0;
+ } while (0);
+ /* In a general error case, the card is not marked online */
+ return rv;
+}
+
+static unsigned char MCL3_testmsg[] = {
+0x00,0x00,0x00,0x00,0xEE,0xEE,0xEE,0xEE,0xEE,0xEE,0xEE,0xEE,
+0x00,0x06,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x58,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x43,0x41,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x50,0x4B,0x00,0x00,0x00,0x00,0x01,0xC4,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x07,0x24,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0xDC,0x02,0x00,0x00,0x00,0x54,0x32,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0xE8,0x00,0x00,0x00,0x00,0x00,0x00,0x07,0x24,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x04,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,0x00,
+0x00,0x00,0x00,0x00,0x50,0x4B,0x00,0x0A,0x4D,0x52,0x50,0x20,0x20,0x20,0x20,0x20,
+0x00,0x42,0x00,0x01,0x02,0x03,0x04,0x05,0x06,0x07,0x08,0x09,0x0A,0x0B,0x0C,0x0D,
+0x0E,0x0F,0x00,0x11,0x22,0x33,0x44,0x55,0x66,0x77,0x88,0x99,0xAA,0xBB,0xCC,0xDD,
+0xEE,0xFF,0xFF,0xEE,0xDD,0xCC,0xBB,0xAA,0x99,0x88,0x77,0x66,0x55,0x44,0x33,0x22,
+0x11,0x00,0x01,0x23,0x45,0x67,0x89,0xAB,0xCD,0xEF,0xFE,0xDC,0xBA,0x98,0x76,0x54,
+0x32,0x10,0x00,0x9A,0x00,0x98,0x00,0x00,0x1E,0x00,0x00,0x94,0x00,0x00,0x00,0x00,
+0x04,0x00,0x00,0x8C,0x00,0x00,0x00,0x40,0x02,0x00,0x00,0x40,0xBA,0xE8,0x23,0x3C,
+0x75,0xF3,0x91,0x61,0xD6,0x73,0x39,0xCF,0x7B,0x6D,0x8E,0x61,0x97,0x63,0x9E,0xD9,
+0x60,0x55,0xD6,0xC7,0xEF,0xF8,0x1E,0x63,0x95,0x17,0xCC,0x28,0x45,0x60,0x11,0xC5,
+0xC4,0x4E,0x66,0xC6,0xE6,0xC3,0xDE,0x8A,0x19,0x30,0xCF,0x0E,0xD7,0xAA,0xDB,0x01,
+0xD8,0x00,0xBB,0x8F,0x39,0x9F,0x64,0x28,0xF5,0x7A,0x77,0x49,0xCC,0x6B,0xA3,0x91,
+0x97,0x70,0xE7,0x60,0x1E,0x39,0xE1,0xE5,0x33,0xE1,0x15,0x63,0x69,0x08,0x80,0x4C,
+0x67,0xC4,0x41,0x8F,0x48,0xDF,0x26,0x98,0xF1,0xD5,0x8D,0x88,0xD9,0x6A,0xA4,0x96,
+0xC5,0x84,0xD9,0x30,0x49,0x67,0x7D,0x19,0xB1,0xB3,0x45,0x4D,0xB2,0x53,0x9A,0x47,
+0x3C,0x7C,0x55,0xBF,0xCC,0x85,0x00,0x36,0xF1,0x3D,0x93,0x53
+};
+
+static int
+probe_PCIXCC_type(struct device *devPtr)
+{
+ int rv, dv, i, index, length;
+ unsigned char psmid[8];
+ static unsigned char loc_testmsg[548];
+ struct CPRBX *cprbx_p;
+
+ index = devPtr->dev_self_x;
+ rv = 0;
+ do {
+ memcpy(loc_testmsg, MCL3_testmsg, sizeof(MCL3_testmsg));
+ length = sizeof(MCL3_testmsg) - 0x0C;
+ dv = send_to_AP(index, z90crypt.cdx, length, loc_testmsg);
+ if (dv) {
+ PDEBUG("dv returned = %d\n", dv);
+ if (dv == DEV_SEN_EXCEPTION) {
+ rv = SEN_FATAL_ERROR;
+ PRINTKC("exception in send to AP %d\n", index);
+ break;
+ }
+ PDEBUG("return value from send_to_AP: %d\n", rv);
+ switch (dv) {
+ case DEV_GONE:
+ PDEBUG("dev %d not available\n", index);
+ rv = SEN_NOT_AVAIL;
+ break;
+ case DEV_ONLINE:
+ rv = 0;
+ break;
+ case DEV_EMPTY:
+ rv = SEN_NOT_AVAIL;
+ break;
+ case DEV_NO_WORK:
+ rv = SEN_FATAL_ERROR;
+ break;
+ case DEV_BAD_MESSAGE:
+ rv = SEN_USER_ERROR;
+ break;
+ case DEV_QUEUE_FULL:
+ rv = SEN_QUEUE_FULL;
+ break;
+ default:
+ PRINTK("unknown dv=%d for dev %d\n", dv, index);
+ rv = SEN_NOT_AVAIL;
+ break;
+ }
+ }
+
+ if (rv)
+ break;
+
+ for (i = 0; i < 6; i++) {
+ mdelay(300);
+ dv = receive_from_AP(index, z90crypt.cdx,
+ devPtr->dev_resp_l,
+ devPtr->dev_resp_p, psmid);
+ PDEBUG("dv returned by DQ = %d\n", dv);
+ if (dv == DEV_REC_EXCEPTION) {
+ rv = REC_FATAL_ERROR;
+ PRINTKC("exception in dequeue %d\n",
+ index);
+ break;
+ }
+ switch (dv) {
+ case DEV_ONLINE:
+ rv = 0;
+ break;
+ case DEV_EMPTY:
+ rv = REC_EMPTY;
+ break;
+ case DEV_NO_WORK:
+ rv = REC_NO_WORK;
+ break;
+ case DEV_BAD_MESSAGE:
+ case DEV_GONE:
+ default:
+ rv = REC_NO_RESPONSE;
+ break;
+ }
+ if ((rv != 0) && (rv != REC_NO_WORK))
+ break;
+ if (rv == 0)
+ break;
+ }
+ if (rv)
+ break;
+ cprbx_p = (struct CPRBX *) (devPtr->dev_resp_p + 48);
+ if ((cprbx_p->ccp_rtcode == 8) && (cprbx_p->ccp_rscode == 33)) {
+ devPtr->dev_type = PCIXCC_MCL2;
+ PDEBUG("device %d is MCL2\n", index);
+ } else {
+ devPtr->dev_type = PCIXCC_MCL3;
+ PDEBUG("device %d is MCL3\n", index);
+ }
+ } while (0);
+ /* In a general error case, the card is not marked online */
+ return rv;
+}
+
+#ifdef Z90CRYPT_USE_HOTPLUG
+static void
+z90crypt_hotplug_event(int dev_major, int dev_minor, int action)
+{
+#ifdef CONFIG_HOTPLUG
+ char *argv[3];
+ char *envp[6];
+ char major[20];
+ char minor[20];
+
+ sprintf(major, "MAJOR=%d", dev_major);
+ sprintf(minor, "MINOR=%d", dev_minor);
+
+ argv[0] = hotplug_path;
+ argv[1] = "z90crypt";
+ argv[2] = 0;
+
+ envp[0] = "HOME=/";
+ envp[1] = "PATH=/sbin:/bin:/usr/sbin:/usr/bin";
+
+ switch (action) {
+ case Z90CRYPT_HOTPLUG_ADD:
+ envp[2] = "ACTION=add";
+ break;
+ case Z90CRYPT_HOTPLUG_REMOVE:
+ envp[2] = "ACTION=remove";
+ break;
+ default:
+ BUG();
+ break;
+ }
+ envp[3] = major;
+ envp[4] = minor;
+ envp[5] = 0;
+
+ call_usermodehelper(argv[0], argv, envp, 0);
+#endif
+}
+#endif
+
+module_init(z90crypt_init_module);
+module_exit(z90crypt_cleanup_module);