linux/arch/arm64/crypto/poly1305-glue.c

// SPDX-License-Identifier: GPL-2.0
/*
 * OpenSSL/Cryptogams accelerated Poly1305 transform for arm64
 *
 * Copyright (C) 2019 Linaro Ltd. <ard.biesheuvel@linaro.org>
 */

#include <asm/hwcap.h>
#include <asm/neon.h>
#include <asm/simd.h>
#include <asm/unaligned.h>
#include <crypto/algapi.h>
#include <crypto/internal/hash.h>
#include <crypto/internal/poly1305.h>
#include <crypto/internal/simd.h>
#include <linux/cpufeature.h>
#include <linux/crypto.h>
#include <linux/jump_label.h>
#include <linux/module.h>

asmlinkage void poly1305_init_arm64(void *state, const u8 *key);
asmlinkage void poly1305_blocks(void *state, const u8 *src, u32 len, u32 hibit);
asmlinkage void poly1305_blocks_neon(void *state, const u8 *src, u32 len, u32 hibit);
asmlinkage void poly1305_emit(void *state, u8 *digest, const u32 *nonce);

static __ro_after_init DEFINE_STATIC_KEY_FALSE(have_neon);

void poly1305_init_arch(struct poly1305_desc_ctx *dctx, const u8 *key)
{
	poly1305_init_arm64(&dctx->h, key);
	dctx->s[0] = get_unaligned_le32(key + 16);
	dctx->s[1] = get_unaligned_le32(key + 20);
	dctx->s[2] = get_unaligned_le32(key + 24);
	dctx->s[3] = get_unaligned_le32(key + 28);
	dctx->buflen = 0;
}
EXPORT_SYMBOL(poly1305_init_arch);

static int neon_poly1305_init(struct shash_desc *desc)
{
	struct poly1305_desc_ctx *dctx = shash_desc_ctx(desc);

	dctx->buflen = 0;
	dctx->rset = 0;
	dctx->sset = false;

	return 0;
}

static void neon_poly1305_blocks(struct poly1305_desc_ctx *dctx, const u8 *src,
				 u32 len, u32 hibit, bool do_neon)
{
	if (unlikely(!dctx->sset)) {
		if (!dctx->rset) {
			poly1305_init_arch(dctx, src);
			src += POLY1305_BLOCK_SIZE;
			len -= POLY1305_BLOCK_SIZE;
			dctx->rset = 1;
		}
		if (len >= POLY1305_BLOCK_SIZE) {
			dctx->s[0] = get_unaligned_le32(src +  0);
			dctx->s[1] = get_unaligned_le32(src +  4);
			dctx->s[2] = get_unaligned_le32(src +  8);
			dctx->s[3] = get_unaligned_le32(src + 12);
			src += POLY1305_BLOCK_SIZE;
			len -= POLY1305_BLOCK_SIZE;
			dctx->sset = true;
		}
		if (len < POLY1305_BLOCK_SIZE)
			return;
	}

	len &= ~(POLY1305_BLOCK_SIZE - 1);

	if (static_branch_likely(&have_neon) && likely(do_neon))
		poly1305_blocks_neon(&dctx->h, src, len, hibit);
	else
		poly1305_blocks(&dctx->h, src, len, hibit);
}

static void neon_poly1305_do_update(struct poly1305_desc_ctx *dctx,
				    const u8 *src, u32 len, bool do_neon)
{
	if (unlikely(dctx->buflen)) {
		u32 bytes = min(len, POLY1305_BLOCK_SIZE - dctx->buflen);

		memcpy(dctx->buf + dctx->buflen, src, bytes);
		src += bytes;
		len -= bytes;
		dctx->buflen += bytes;

		if (dctx->buflen == POLY1305_BLOCK_SIZE) {
			neon_poly1305_blocks(dctx, dctx->buf,
					     POLY1305_BLOCK_SIZE, 1, false);
			dctx->buflen = 0;
		}
	}

	if (likely(len >= POLY1305_BLOCK_SIZE)) {
		neon_poly1305_blocks(dctx, src, len, 1, do_neon);
		src += round_down(len, POLY1305_BLOCK_SIZE);
		len %= POLY1305_BLOCK_SIZE;
	}

	if (unlikely(len)) {
		dctx->buflen = len;
		memcpy(dctx->buf, src, len);
	}
}

static int neon_poly1305_update(struct shash_desc *desc,
				const u8 *src, unsigned int srclen)
{
	bool do_neon = crypto_simd_usable() && srclen > 128;
	struct poly1305_desc_ctx *dctx = shash_desc_ctx(desc);

	if (static_branch_likely(&have_neon) && do_neon)
		kernel_neon_begin();
	neon_poly1305_do_update(dctx, src, srclen, do_neon);
	if (static_branch_likely(&have_neon) && do_neon)
		kernel_neon_end();
	return 0;
}

void poly1305_update_arch(struct poly1305_desc_ctx *dctx, const u8 *src,
			  unsigned int nbytes)
{
	if (unlikely(dctx->buflen)) {
		u32 bytes = min(nbytes, POLY1305_BLOCK_SIZE - dctx->buflen);

		memcpy(dctx->buf + dctx->buflen, src, bytes);
		src += bytes;
		nbytes -= bytes;
		dctx->buflen += bytes;

		if (dctx->buflen == POLY1305_BLOCK_SIZE) {
			poly1305_blocks(&dctx->h, dctx->buf, POLY1305_BLOCK_SIZE, 1);
			dctx->buflen = 0;
		}
	}

	if (likely(nbytes >= POLY1305_BLOCK_SIZE)) {
		unsigned int len = round_down(nbytes, POLY1305_BLOCK_SIZE);

		if (static_branch_likely(&have_neon) && crypto_simd_usable()) {
			kernel_neon_begin();
			poly1305_blocks_neon(&dctx->h, src, len, 1);
			kernel_neon_end();
		} else {
			poly1305_blocks(&dctx->h, src, len, 1);
		}
		src += len;
		nbytes %= POLY1305_BLOCK_SIZE;
	}

	if (unlikely(nbytes)) {
		dctx->buflen = nbytes;
		memcpy(dctx->buf, src, nbytes);
	}
}
EXPORT_SYMBOL(poly1305_update_arch);

void poly1305_final_arch(struct poly1305_desc_ctx *dctx, u8 *dst)
{
	if (unlikely(dctx->buflen)) {
		dctx->buf[dctx->buflen++] = 1;
		memset(dctx->buf + dctx->buflen, 0,
		       POLY1305_BLOCK_SIZE - dctx->buflen);
		poly1305_blocks(&dctx->h, dctx->buf, POLY1305_BLOCK_SIZE, 0);
	}

	poly1305_emit(&dctx->h, dst, dctx->s);
	*dctx = (struct poly1305_desc_ctx){};
}
EXPORT_SYMBOL(poly1305_final_arch);

static int neon_poly1305_final(struct shash_desc *desc, u8 *dst)
{
	struct poly1305_desc_ctx *dctx = shash_desc_ctx(desc);

	if (unlikely(!dctx->sset))
		return -ENOKEY;

	poly1305_final_arch(dctx, dst);
	return 0;
}

static struct shash_alg neon_poly1305_alg = {
	.init			= neon_poly1305_init,
	.update			= neon_poly1305_update,
	.final			= neon_poly1305_final,
	.digestsize		= POLY1305_DIGEST_SIZE,
	.descsize		= sizeof(struct poly1305_desc_ctx),

	.base.cra_name		= "poly1305",
	.base.cra_driver_name	= "poly1305-neon",
	.base.cra_priority	= 200,
	.base.cra_blocksize	= POLY1305_BLOCK_SIZE,
	.base.cra_module	= THIS_MODULE,
};

static int __init neon_poly1305_mod_init(void)
{
	if (!cpu_have_named_feature(ASIMD))
		return 0;

	static_branch_enable(&have_neon);

	return IS_REACHABLE(CONFIG_CRYPTO_HASH) ?
		crypto_register_shash(&neon_poly1305_alg) : 0;
}

static void __exit neon_poly1305_mod_exit(void)
{
	if (IS_REACHABLE(CONFIG_CRYPTO_HASH) && cpu_have_named_feature(ASIMD))
		crypto_unregister_shash(&neon_poly1305_alg);
}

module_init(neon_poly1305_mod_init);
module_exit(neon_poly1305_mod_exit);

MODULE_LICENSE("GPL v2");
MODULE_ALIAS_CRYPTO("poly1305");
MODULE_ALIAS_CRYPTO("poly1305-neon");
crypto: arm64/poly1305 - incorporate OpenSSL/CRYPTOGAMS NEON implementation This is a straight import of the OpenSSL/CRYPTOGAMS Poly1305 implementation for NEON authored by Andy Polyakov, and contributed by him to the OpenSSL project. The file 'poly1305-armv8.pl' is taken straight from this upstream GitHub repository [0] at commit ec55a08dc0244ce570c4fc7cade330c60798952f, and already contains all the changes required to build it as part of a Linux kernel module. [0] https://github.com/dot-asm/cryptogams Co-developed-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-08 15:22:24 +03:00			`// SPDX-License-Identifier: GPL-2.0`
			`/*`
			`* OpenSSL/Cryptogams accelerated Poly1305 transform for arm64`
			`*`
			`* Copyright (C) 2019 Linaro Ltd. <ard.biesheuvel@linaro.org>`
			`*/`

			`#include <asm/hwcap.h>`
			`#include <asm/neon.h>`
			`#include <asm/simd.h>`
			`#include <asm/unaligned.h>`
			`#include <crypto/algapi.h>`
			`#include <crypto/internal/hash.h>`
			`#include <crypto/internal/poly1305.h>`
			`#include <crypto/internal/simd.h>`
			`#include <linux/cpufeature.h>`
			`#include <linux/crypto.h>`
			`#include <linux/jump_label.h>`
			`#include <linux/module.h>`

			`asmlinkage void poly1305_init_arm64(void state, const u8 key);`
			`asmlinkage void poly1305_blocks(void state, const u8 src, u32 len, u32 hibit);`
			`asmlinkage void poly1305_blocks_neon(void state, const u8 src, u32 len, u32 hibit);`
crypto: {arm,arm64,mips}/poly1305 - remove redundant non-reduction from emit This appears to be some kind of copy and paste error, and is actually dead code. Pre: f = 0 ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[0]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst); Pre: 0 ≤ f < 2³² ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[1]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst + 4); Pre: 0 ≤ f < 2³² ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[2]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst + 8); Pre: 0 ≤ f < 2³² ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[3]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst + 12); Therefore this sequence is redundant. And Andy's code appears to handle misalignment acceptably. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Tested-by: Ard Biesheuvel <ardb@kernel.org> Reviewed-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2020-01-06 06:40:49 +03:00			`asmlinkage void poly1305_emit(void state, u8 digest, const u32 *nonce);`
crypto: arm64/poly1305 - incorporate OpenSSL/CRYPTOGAMS NEON implementation This is a straight import of the OpenSSL/CRYPTOGAMS Poly1305 implementation for NEON authored by Andy Polyakov, and contributed by him to the OpenSSL project. The file 'poly1305-armv8.pl' is taken straight from this upstream GitHub repository [0] at commit ec55a08dc0244ce570c4fc7cade330c60798952f, and already contains all the changes required to build it as part of a Linux kernel module. [0] https://github.com/dot-asm/cryptogams Co-developed-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-08 15:22:24 +03:00
			`static __ro_after_init DEFINE_STATIC_KEY_FALSE(have_neon);`

			`void poly1305_init_arch(struct poly1305_desc_ctx dctx, const u8 key)`
			`{`
			`poly1305_init_arm64(&dctx->h, key);`
			`dctx->s[0] = get_unaligned_le32(key + 16);`
			`dctx->s[1] = get_unaligned_le32(key + 20);`
			`dctx->s[2] = get_unaligned_le32(key + 24);`
			`dctx->s[3] = get_unaligned_le32(key + 28);`
			`dctx->buflen = 0;`
			`}`
			`EXPORT_SYMBOL(poly1305_init_arch);`

			`static int neon_poly1305_init(struct shash_desc *desc)`
			`{`
			`struct poly1305_desc_ctx *dctx = shash_desc_ctx(desc);`

			`dctx->buflen = 0;`
			`dctx->rset = 0;`
			`dctx->sset = false;`

			`return 0;`
			`}`

			`static void neon_poly1305_blocks(struct poly1305_desc_ctx dctx, const u8 src,`
			`u32 len, u32 hibit, bool do_neon)`
			`{`
			`if (unlikely(!dctx->sset)) {`
			`if (!dctx->rset) {`
			`poly1305_init_arch(dctx, src);`
			`src += POLY1305_BLOCK_SIZE;`
			`len -= POLY1305_BLOCK_SIZE;`
			`dctx->rset = 1;`
			`}`
			`if (len >= POLY1305_BLOCK_SIZE) {`
			`dctx->s[0] = get_unaligned_le32(src + 0);`
			`dctx->s[1] = get_unaligned_le32(src + 4);`
			`dctx->s[2] = get_unaligned_le32(src + 8);`
			`dctx->s[3] = get_unaligned_le32(src + 12);`
			`src += POLY1305_BLOCK_SIZE;`
			`len -= POLY1305_BLOCK_SIZE;`
			`dctx->sset = true;`
			`}`
			`if (len < POLY1305_BLOCK_SIZE)`
			`return;`
			`}`

			`len &= ~(POLY1305_BLOCK_SIZE - 1);`

			`if (static_branch_likely(&have_neon) && likely(do_neon))`
			`poly1305_blocks_neon(&dctx->h, src, len, hibit);`
			`else`
			`poly1305_blocks(&dctx->h, src, len, hibit);`
			`}`

			`static void neon_poly1305_do_update(struct poly1305_desc_ctx *dctx,`
			`const u8 *src, u32 len, bool do_neon)`
			`{`
			`if (unlikely(dctx->buflen)) {`
			`u32 bytes = min(len, POLY1305_BLOCK_SIZE - dctx->buflen);`

			`memcpy(dctx->buf + dctx->buflen, src, bytes);`
			`src += bytes;`
			`len -= bytes;`
			`dctx->buflen += bytes;`

			`if (dctx->buflen == POLY1305_BLOCK_SIZE) {`
			`neon_poly1305_blocks(dctx, dctx->buf,`
			`POLY1305_BLOCK_SIZE, 1, false);`
			`dctx->buflen = 0;`
			`}`
			`}`

			`if (likely(len >= POLY1305_BLOCK_SIZE)) {`
			`neon_poly1305_blocks(dctx, src, len, 1, do_neon);`
			`src += round_down(len, POLY1305_BLOCK_SIZE);`
			`len %= POLY1305_BLOCK_SIZE;`
			`}`

			`if (unlikely(len)) {`
			`dctx->buflen = len;`
			`memcpy(dctx->buf, src, len);`
			`}`
			`}`

			`static int neon_poly1305_update(struct shash_desc *desc,`
			`const u8 *src, unsigned int srclen)`
			`{`
			`bool do_neon = crypto_simd_usable() && srclen > 128;`
			`struct poly1305_desc_ctx *dctx = shash_desc_ctx(desc);`

			`if (static_branch_likely(&have_neon) && do_neon)`
			`kernel_neon_begin();`
			`neon_poly1305_do_update(dctx, src, srclen, do_neon);`
			`if (static_branch_likely(&have_neon) && do_neon)`
			`kernel_neon_end();`
			`return 0;`
			`}`

			`void poly1305_update_arch(struct poly1305_desc_ctx dctx, const u8 src,`
			`unsigned int nbytes)`
			`{`
			`if (unlikely(dctx->buflen)) {`
			`u32 bytes = min(nbytes, POLY1305_BLOCK_SIZE - dctx->buflen);`

			`memcpy(dctx->buf + dctx->buflen, src, bytes);`
			`src += bytes;`
			`nbytes -= bytes;`
			`dctx->buflen += bytes;`

			`if (dctx->buflen == POLY1305_BLOCK_SIZE) {`
			`poly1305_blocks(&dctx->h, dctx->buf, POLY1305_BLOCK_SIZE, 1);`
			`dctx->buflen = 0;`
			`}`
			`}`

			`if (likely(nbytes >= POLY1305_BLOCK_SIZE)) {`
			`unsigned int len = round_down(nbytes, POLY1305_BLOCK_SIZE);`

			`if (static_branch_likely(&have_neon) && crypto_simd_usable()) {`
			`kernel_neon_begin();`
			`poly1305_blocks_neon(&dctx->h, src, len, 1);`
			`kernel_neon_end();`
			`} else {`
			`poly1305_blocks(&dctx->h, src, len, 1);`
			`}`
			`src += len;`
			`nbytes %= POLY1305_BLOCK_SIZE;`
			`}`

			`if (unlikely(nbytes)) {`
			`dctx->buflen = nbytes;`
			`memcpy(dctx->buf, src, nbytes);`
			`}`
			`}`
			`EXPORT_SYMBOL(poly1305_update_arch);`

			`void poly1305_final_arch(struct poly1305_desc_ctx dctx, u8 dst)`
			`{`
			`if (unlikely(dctx->buflen)) {`
			`dctx->buf[dctx->buflen++] = 1;`
			`memset(dctx->buf + dctx->buflen, 0,`
			`POLY1305_BLOCK_SIZE - dctx->buflen);`
			`poly1305_blocks(&dctx->h, dctx->buf, POLY1305_BLOCK_SIZE, 0);`
			`}`

crypto: {arm,arm64,mips}/poly1305 - remove redundant non-reduction from emit This appears to be some kind of copy and paste error, and is actually dead code. Pre: f = 0 ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[0]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst); Pre: 0 ≤ f < 2³² ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[1]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst + 4); Pre: 0 ≤ f < 2³² ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[2]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst + 8); Pre: 0 ≤ f < 2³² ⇒ (f >> 32) = 0 f = (f >> 32) + le32_to_cpu(digest[3]); Post: 0 ≤ f < 2³² put_unaligned_le32(f, dst + 12); Therefore this sequence is redundant. And Andy's code appears to handle misalignment acceptably. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Tested-by: Ard Biesheuvel <ardb@kernel.org> Reviewed-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2020-01-06 06:40:49 +03:00			`poly1305_emit(&dctx->h, dst, dctx->s);`
crypto: arm64/poly1305 - incorporate OpenSSL/CRYPTOGAMS NEON implementation This is a straight import of the OpenSSL/CRYPTOGAMS Poly1305 implementation for NEON authored by Andy Polyakov, and contributed by him to the OpenSSL project. The file 'poly1305-armv8.pl' is taken straight from this upstream GitHub repository [0] at commit ec55a08dc0244ce570c4fc7cade330c60798952f, and already contains all the changes required to build it as part of a Linux kernel module. [0] https://github.com/dot-asm/cryptogams Co-developed-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-08 15:22:24 +03:00			`*dctx = (struct poly1305_desc_ctx){};`
			`}`
			`EXPORT_SYMBOL(poly1305_final_arch);`

			`static int neon_poly1305_final(struct shash_desc desc, u8 dst)`
			`{`
			`struct poly1305_desc_ctx *dctx = shash_desc_ctx(desc);`

			`if (unlikely(!dctx->sset))`
			`return -ENOKEY;`

			`poly1305_final_arch(dctx, dst);`
			`return 0;`
			`}`

			`static struct shash_alg neon_poly1305_alg = {`
			`.init = neon_poly1305_init,`
			`.update = neon_poly1305_update,`
			`.final = neon_poly1305_final,`
			`.digestsize = POLY1305_DIGEST_SIZE,`
			`.descsize = sizeof(struct poly1305_desc_ctx),`

			`.base.cra_name = "poly1305",`
			`.base.cra_driver_name = "poly1305-neon",`
			`.base.cra_priority = 200,`
			`.base.cra_blocksize = POLY1305_BLOCK_SIZE,`
			`.base.cra_module = THIS_MODULE,`
			`};`

			`static int __init neon_poly1305_mod_init(void)`
			`{`
			`if (!cpu_have_named_feature(ASIMD))`
			`return 0;`

			`static_branch_enable(&have_neon);`

crypto: arch - conditionalize crypto api in arch glue for lib code For glue code that's used by Zinc, the actual Crypto API functions might not necessarily exist, and don't need to exist either. Before this patch, there are valid build configurations that lead to a unbuildable kernel. This fixes it to conditionalize those symbols on the existence of the proper config entry. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Acked-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-25 13:31:12 +03:00			`return IS_REACHABLE(CONFIG_CRYPTO_HASH) ?`
			`crypto_register_shash(&neon_poly1305_alg) : 0;`
crypto: arm64/poly1305 - incorporate OpenSSL/CRYPTOGAMS NEON implementation This is a straight import of the OpenSSL/CRYPTOGAMS Poly1305 implementation for NEON authored by Andy Polyakov, and contributed by him to the OpenSSL project. The file 'poly1305-armv8.pl' is taken straight from this upstream GitHub repository [0] at commit ec55a08dc0244ce570c4fc7cade330c60798952f, and already contains all the changes required to build it as part of a Linux kernel module. [0] https://github.com/dot-asm/cryptogams Co-developed-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-08 15:22:24 +03:00			`}`

			`static void __exit neon_poly1305_mod_exit(void)`
			`{`
crypto: arch - conditionalize crypto api in arch glue for lib code For glue code that's used by Zinc, the actual Crypto API functions might not necessarily exist, and don't need to exist either. Before this patch, there are valid build configurations that lead to a unbuildable kernel. This fixes it to conditionalize those symbols on the existence of the proper config entry. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com> Acked-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-25 13:31:12 +03:00			`if (IS_REACHABLE(CONFIG_CRYPTO_HASH) && cpu_have_named_feature(ASIMD))`
crypto: arm64/poly1305 - incorporate OpenSSL/CRYPTOGAMS NEON implementation This is a straight import of the OpenSSL/CRYPTOGAMS Poly1305 implementation for NEON authored by Andy Polyakov, and contributed by him to the OpenSSL project. The file 'poly1305-armv8.pl' is taken straight from this upstream GitHub repository [0] at commit ec55a08dc0244ce570c4fc7cade330c60798952f, and already contains all the changes required to build it as part of a Linux kernel module. [0] https://github.com/dot-asm/cryptogams Co-developed-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Andy Polyakov <appro@cryptogams.org> Signed-off-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au> 2019-11-08 15:22:24 +03:00			`crypto_unregister_shash(&neon_poly1305_alg);`
			`}`

			`module_init(neon_poly1305_mod_init);`
			`module_exit(neon_poly1305_mod_exit);`

			`MODULE_LICENSE("GPL v2");`
			`MODULE_ALIAS_CRYPTO("poly1305");`
			`MODULE_ALIAS_CRYPTO("poly1305-neon");`