Re: [PATCH] /dev/crypto for Linux

From: Christoph Hellwig
Date: Wed Aug 25 2004 - 09:29:45 EST

Next message: Jan-Benedict Glaw: "[PATCH] vsxx-aa: "DB9" plugs are called "DE9", really!"
Previous message: Jan-Benedict Glaw: "[PATCH] lkkbd: "DB9" plugs are called "DE9", really!"
In reply to: Michal Ludvig: "Re: [PATCH] /dev/crypto for Linux"
Next in thread: Michal Ludvig: "Re: [PATCH] /dev/crypto for Linux"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> +static int verbosity = 0;

no need to initialize to 0

> +module_param(verbosity, int, 0644);
> +MODULE_PARM_DESC(verbosity, "0: normal, 1: verbose, 2: debug");
> +
> +#ifdef CRYPTODEV_STATS

whi is this not a config option?

> +static int enable_stats = 0;

as above

> + copy_from_user(alg_name, sop->alg_name, sop->alg_namelen);

this needs error checking.

> + keyp = kmalloc(sop->keylen, GFP_KERNEL);

retval checking

> + copy_from_user(keyp, sop->key, sop->keylen);

error checking

> + if(down_trylock(&ses_ptr->sem)) {
> + dprintk(2, KERN_DEBUG, "Waiting for semaphore of sid=0x%08X\n",
> + ses_ptr->sid);
> + down(&ses_ptr->sem);
> + }

just use down please

> +static int
> +clonefd(struct file *filp)
> +{
> + struct files_struct * files = current->files;
> + int fd;
> +
> + fd = get_unused_fd();
> + if (fd >= 0) {
> + get_file(filp);
> + FD_SET(fd, files->open_fds);
> + fd_install(fd, filp);
> + }
> +
> + return fd;
> +}

Yikes.

> +static int
> +cryptodev_ioctl(struct inode *inode, struct file *filp,
> + unsigned int cmd, unsigned long arg)
> +{
> + struct session_op sop;
> + struct crypt_op cop;
> + struct fcrypt *fcr = filp->private_data;
> + uint32_t ses;
> + int ret, fd;
> +
> + if (!fcr)
> + BUG();
> +
> + switch (cmd) {
> + case CRIOGET:
> + fd = clonefd(filp);
> + put_user(fd, (int*)arg);
> + return 0;

Extremly bad API. Just allow opening the device multiple times,
and get a new context each time (can be stored in file->private_data

> + case CIOCGSESSION:
> + copy_from_user(&sop, (void*)arg, sizeof(sop));
> + ret = crypto_create_session(fcr, &sop);
> + if (ret)
> + return ret;
> + copy_to_user((void*)arg, &sop, sizeof(sop));

missing error check.

> + return 0;
> +
> + case CIOCFSESSION:
> + get_user(ses, (uint32_t*)arg);

dito

> + ret = crypto_finish_session(fcr, ses);
> + return ret;
> +
> + case CIOCCRYPT:
> + copy_from_user(&cop, (void*)arg, sizeof(cop));
> + ret = crypto_run(fcr, &cop);
> + copy_to_user((void*)arg, &cop, sizeof(cop));

dito

besides the rather crappy implementation I'm not sure a crypto device
makes any sense until we have hardware accelerators, and for these this
is most likely not he right API
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jan-Benedict Glaw: "[PATCH] vsxx-aa: "DB9" plugs are called "DE9", really!"
Previous message: Jan-Benedict Glaw: "[PATCH] lkkbd: "DB9" plugs are called "DE9", really!"
In reply to: Michal Ludvig: "Re: [PATCH] /dev/crypto for Linux"
Next in thread: Michal Ludvig: "Re: [PATCH] /dev/crypto for Linux"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]