blob: 0d3cce87825623df56d8cabfe282accb1aae90da [file] [log] [blame]
/* Copyright (c) 2010-2013, The Linux Foundation. All rights reserved.
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions are
* met:
* * Redistributions of source code must retain the above copyright
* notice, this list of conditions and the following disclaimer.
* * Redistributions in binary form must reproduce the above
* copyright notice, this list of conditions and the following
* disclaimer in the documentation and/or other materials provided
* with the distribution.
* * Neither the name of The Linux Foundation nor the names of its
* contributors may be used to endorse or promote products derived
* from this software without specific prior written permission.
*
* THIS SOFTWARE IS PROVIDED "AS IS" AND ANY EXPRESS OR IMPLIED
* WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
* MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NON-INFRINGEMENT
* ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS
* BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
* CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
* SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
* BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
* WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
* OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN
* IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*/
#include <string.h>
#include <debug.h>
#include <sys/types.h>
#include "crypto_hash.h"
static crypto_SHA256_ctx g_sha256_ctx;
static crypto_SHA1_ctx g_sha1_ctx;
static bool crypto_init_done;
extern void ce_clock_init(void);
/*
* Top level function which calculates SHAx digest with given data and size.
* Digest varies based on the authentication algorithm.
* It works on contiguous data and does single pass calculation.
*/
void
hash_find(unsigned char *addr, unsigned int size, unsigned char *digest,
unsigned char auth_alg)
{
crypto_result_type ret_val = CRYPTO_SHA_ERR_NONE;
crypto_engine_type platform_ce_type = board_ce_type();
if (auth_alg == CRYPTO_AUTH_ALG_SHA1) {
if(platform_ce_type == CRYPTO_ENGINE_TYPE_SW)
/* Hardware CE is not present , use software hashing */
digest = SHA1(addr, size, digest);
else if (platform_ce_type == CRYPTO_ENGINE_TYPE_HW)
ret_val = crypto_sha1(addr, size, digest);
else
ret_val = CRYPTO_SHA_ERR_FAIL;
} else if (auth_alg == CRYPTO_AUTH_ALG_SHA256) {
if(platform_ce_type == CRYPTO_ENGINE_TYPE_SW)
/* Hardware CE is not present , use software hashing */
digest = SHA256(addr, size, digest);
else if (platform_ce_type == CRYPTO_ENGINE_TYPE_HW)
ret_val = crypto_sha256(addr, size, digest);
else
ret_val = CRYPTO_SHA_ERR_FAIL;
}
else
ret_val = CRYPTO_SHA_ERR_FAIL;
if (ret_val != CRYPTO_SHA_ERR_NONE) {
dprintf(CRITICAL, "crypto_sha256 returns error %d\n", ret_val);
}
}
/*
* Function to reset and init crypto engine. It resets the engine for the
* first time. Used for multiple SHA operations.
*/
static void crypto_init(void)
{
if (crypto_init_done != TRUE) {
ce_clock_init();
crypto_eng_reset();
crypto_init_done = TRUE;
}
crypto_eng_init();
}
/*
* Function to return if crypto is initialized
*/
bool crypto_initialized()
{
return crypto_init_done;
}
/*
* Function to initialize SHA256 context
*/
static crypto_result_type crypto_sha256_init(crypto_SHA256_ctx * ctx_ptr)
{
unsigned int i;
/* Standard initialization vector for SHA256 */
unsigned int sha256_init_vector[] = { 0x6A09E667, 0xBB67AE85,
0x3C6EF372, 0xA54FF53A,
0x510E527F, 0x9B05688C,
0x1F83D9AB, 0x5BE0CD19
};
if (ctx_ptr == NULL) {
return CRYPTO_SHA_ERR_INVALID_PARAM;
}
ctx_ptr->auth_bytecnt[0] = 0;
ctx_ptr->auth_bytecnt[1] = 0;
memset(ctx_ptr->saved_buff, 0, CRYPTO_SHA_BLOCK_SIZE);
for (i = 0; i < SHA256_INIT_VECTOR_SIZE; i++) {
ctx_ptr->auth_iv[i] = sha256_init_vector[i];
}
ctx_ptr->saved_buff_indx = 0;
return CRYPTO_SHA_ERR_NONE;
}
/*
* Function to initialize SHA1 context
*/
static crypto_result_type crypto_sha1_init(crypto_SHA1_ctx * ctx_ptr)
{
unsigned int i;
/* Standard initialization vector for SHA1 */
unsigned int sha1_init_vector[] = { 0x67452301, 0xEFCDAB89,
0x98BADCFE, 0x10325476,
0xC3D2E1F0
};
if (ctx_ptr == NULL) {
return CRYPTO_SHA_ERR_INVALID_PARAM;
}
ctx_ptr->auth_bytecnt[0] = 0;
ctx_ptr->auth_bytecnt[1] = 0;
memset(ctx_ptr->saved_buff, 0, CRYPTO_SHA_BLOCK_SIZE);
for (i = 0; i < SHA1_INIT_VECTOR_SIZE; i++) {
ctx_ptr->auth_iv[i] = sha1_init_vector[i];
}
ctx_ptr->saved_buff_indx = 0;
return CRYPTO_SHA_ERR_NONE;
}
/*
* Function to calculate SHA256 digest of given data buffer.
* It works on contiguous data and gives digest in single pass.
*/
static crypto_result_type
crypto_sha256(unsigned char *buff_ptr,
unsigned int buff_size, unsigned char *digest_ptr)
{
crypto_result_type ret_val = CRYPTO_SHA_ERR_NONE;
if ((!buff_size) || (buff_ptr == NULL) || (digest_ptr == NULL)) {
return CRYPTO_SHA_ERR_INVALID_PARAM;
}
/* Initialize crypto engine hardware for a new SHA256 operation */
crypto_init();
/* Now do SHA256 hashing */
ret_val =
do_sha(buff_ptr, buff_size, digest_ptr, CRYPTO_AUTH_ALG_SHA256);
if (ret_val != CRYPTO_SHA_ERR_NONE) {
dprintf(CRITICAL, "crypto_sha256 returns error %d\n", ret_val);
}
return ret_val;
}
/*
* Function to calculate SHA1 digest of given data buffer.
* It works on contiguous data and gives digest in single pass.
*/
static crypto_result_type
crypto_sha1(unsigned char *buff_ptr,
unsigned int buff_size, unsigned char *digest_ptr)
{
crypto_result_type ret_val = CRYPTO_SHA_ERR_NONE;
if ((!buff_size) || (buff_ptr == NULL) || (digest_ptr == NULL)) {
return CRYPTO_SHA_ERR_INVALID_PARAM;
}
/* Initialize crypto engine hardware for a new SHA1 operation */
crypto_init();
/* Now do SHA1 hashing */
ret_val = do_sha(buff_ptr, buff_size, digest_ptr, CRYPTO_AUTH_ALG_SHA1);
if (ret_val != CRYPTO_SHA_ERR_NONE) {
dprintf(CRITICAL, "crypto_sha256 returns error %d\n", ret_val);
}
return ret_val;
}
/*
* Common function to calculate SHA1 and SHA256 digest based on auth algorithm.
*/
static crypto_result_type
do_sha(unsigned char *buff_ptr,
unsigned int buff_size,
unsigned char *digest_ptr, crypto_auth_alg_type auth_alg)
{
void *ctx_ptr = NULL;
crypto_result_type ret_val = CRYPTO_SHA_ERR_NONE;
/* Initialize SHA context based on algorithm */
if (auth_alg == CRYPTO_AUTH_ALG_SHA1) {
crypto_sha1_init(&g_sha1_ctx);
ctx_ptr = (void *)&g_sha1_ctx;
} else if (auth_alg == CRYPTO_AUTH_ALG_SHA256) {
crypto_sha256_init(&g_sha256_ctx);
ctx_ptr = (void *)&g_sha256_ctx;
}
ret_val =
do_sha_update(ctx_ptr, buff_ptr, buff_size, auth_alg, TRUE, TRUE);
if (ret_val != CRYPTO_SHA_ERR_NONE) {
dprintf(CRITICAL, "do_sha_update returns error %d\n", ret_val);
return ret_val;
}
/* Copy the digest value from context pointer to digest pointer */
if (auth_alg == CRYPTO_AUTH_ALG_SHA1) {
memcpy(digest_ptr,
(unsigned char *)(((crypto_SHA1_ctx *) ctx_ptr)->
auth_iv), 20);
} else if (auth_alg == CRYPTO_AUTH_ALG_SHA256) {
memcpy(digest_ptr,
(unsigned char *)(((crypto_SHA256_ctx *) ctx_ptr)->
auth_iv), 32);
}
return CRYPTO_SHA_ERR_NONE;
}
/*
* Common function to calculate SHA1 and SHA256 digest based on auth algorithm.
* Calls crypto engine APIs to setup SHAx registers, send the data and gets
* the digest.
*/
static crypto_result_type
do_sha_update(void *ctx_ptr,
unsigned char *buff_ptr,
unsigned int buff_size,
crypto_auth_alg_type auth_alg, bool first, bool last)
{
unsigned int ret_val = CRYPTO_ERR_NONE;
unsigned int bytes_to_write = 0;
unsigned int bytes_remaining = 0;
unsigned int tmp_bytes = 0;
unsigned int bytes_written = 0;
unsigned int tmp_buff_size = 0;
unsigned char *tmp_buff_ptr = NULL;
unsigned char tmp_saved_buff_indx = 0;
bool tmp_first;
bool tmp_last;
/* Type casting to SHA1 context as offset is similar for SHA256 context */
crypto_SHA1_ctx *sha1_ctx = (crypto_SHA1_ctx *) ctx_ptr;
bytes_to_write = calc_num_bytes_to_send(ctx_ptr, buff_size, last);
bytes_remaining =
buff_size + sha1_ctx->saved_buff_indx - bytes_to_write;
tmp_first = first;
tmp_saved_buff_indx = sha1_ctx->saved_buff_indx;
do {
if ((bytes_to_write - bytes_written) >
crypto_get_max_auth_blk_size()) {
/* Write CRYPTO_MAX_AUTH_BLOCK_SIZE bytes at a time to the CE */
tmp_bytes = crypto_get_max_auth_blk_size();
tmp_last = FALSE;
if (sha1_ctx->saved_buff_indx != 0) {
tmp_buff_ptr = buff_ptr;
tmp_buff_size =
tmp_bytes - sha1_ctx->saved_buff_indx;
} else {
tmp_buff_ptr =
buff_ptr + bytes_written -
tmp_saved_buff_indx;
tmp_buff_size = tmp_bytes;
}
} else {
/* Since bytes_to_write are less than CRYPTO_MAX_AUTH_BLOCK_SIZE
write all remaining bytes now */
if (sha1_ctx->saved_buff_indx != 0) {
tmp_buff_ptr = buff_ptr;
tmp_buff_size =
bytes_to_write - bytes_written -
sha1_ctx->saved_buff_indx;
} else {
tmp_buff_ptr =
buff_ptr + bytes_written -
tmp_saved_buff_indx;
tmp_buff_size =
bytes_to_write - bytes_written -
tmp_saved_buff_indx;
}
tmp_bytes = (bytes_to_write - bytes_written);
tmp_last = last;
}
/* Set SHAx context in the crypto engine */
crypto_set_sha_ctx(ctx_ptr, tmp_bytes, auth_alg, tmp_first,
tmp_last);
/* Send data to the crypto engine */
crypto_send_data(ctx_ptr, tmp_buff_ptr, tmp_buff_size,
tmp_bytes, &ret_val);
if (ret_val != CRYPTO_ERR_NONE) {
dprintf(CRITICAL,
"do_sha_update returns error from crypto_send_data\n");
return CRYPTO_SHA_ERR_FAIL;
}
/* Get the SHAx digest from the crypto engine */
crypto_get_digest((unsigned char *)(sha1_ctx->auth_iv),
&ret_val, auth_alg, tmp_last);
if (ret_val != CRYPTO_ERR_NONE) {
dprintf(CRITICAL,
"do_sha_update returns error from crypto_get_digest\n");
return CRYPTO_SHA_ERR_FAIL;
}
if (!tmp_last) {
crypto_get_ctx(ctx_ptr);
}
bytes_written += tmp_bytes;
sha1_ctx->saved_buff_indx = 0;
if (bytes_written != bytes_to_write) {
tmp_first = FALSE;
}
}
while ((bytes_to_write - bytes_written) != 0);
/* If there are bytes remaining, copy it to saved_buff */
if (bytes_remaining) {
memcpy(sha1_ctx->saved_buff,
(buff_ptr + buff_size - bytes_remaining),
bytes_remaining);
sha1_ctx->saved_buff_indx = bytes_remaining;
} else {
sha1_ctx->saved_buff_indx = 0;
}
return CRYPTO_SHA_ERR_NONE;
}
/*
* Function to calculate the number of bytes to be sent to crypto engine.
*/
static unsigned int
calc_num_bytes_to_send(void *ctx_ptr, unsigned int buff_size, bool last)
{
unsigned int bytes_to_write = 0;
crypto_SHA1_ctx *sha1_ctx = (crypto_SHA1_ctx *) ctx_ptr;
if (last) {
bytes_to_write = buff_size + sha1_ctx->saved_buff_indx;
} else {
bytes_to_write = ((buff_size + sha1_ctx->saved_buff_indx) /
CRYPTO_SHA_BLOCK_SIZE) *
CRYPTO_SHA_BLOCK_SIZE;
}
return bytes_to_write;
}