Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-4.19 / a14d749fcebe97ddf6af6db3d1f6ece85c9ddcb9 / . / arch / s390 / crypto / sha_common.c
blob: c740f77285b2a6cf9d468b84a4c357cc8b6eba17 [file] [log] [blame]
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]1/*
2 * Cryptographic API.
3 *
4 * s390 generic implementation of the SHA Secure Hash Algorithms.
5 *
6 * Copyright IBM Corp. 2007
7 * Author(s): Jan Glauber (jang@de.ibm.com)
8 *
9 * This program is free software; you can redistribute it and/or modify it
10 * under the terms of the GNU General Public License as published by the Free
11 * Software Foundation; either version 2 of the License, or (at your option)
12 * any later version.
13 *
14 */
15
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]16#include <crypto/internal/hash.h>
Heiko Carstens3a4c5d52011-07-30 09:25:15 +0200[diff] [blame]17#include <linux/module.h>
Martin Schwidefskyc7d4d252016-03-17 15:22:12 +0100[diff] [blame]18#include <asm/cpacf.h>
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]19#include "sha.h"
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]20
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]21int s390_sha_update(struct shash_desc *desc, const u8 *data, unsigned int len)
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]22{
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]23 struct s390_sha_ctx *ctx = shash_desc_ctx(desc);
24 unsigned int bsize = crypto_shash_blocksize(desc->tfm);
Martin Schwidefsky0177db02016-08-15 10:41:52 +0200[diff] [blame]25 unsigned int index, n;
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]26
27 /* how much is already in the buffer? */
28 index = ctx->count & (bsize - 1);
29 ctx->count += len;
30
31 if ((index + len) < bsize)
32 goto store;
33
34 /* process one stored block */
35 if (index) {
36 memcpy(ctx->buf + index, data, bsize - index);
Martin Schwidefsky0177db02016-08-15 10:41:52 +0200[diff] [blame]37 cpacf_kimd(ctx->func, ctx->state, ctx->buf, bsize);
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]38 data += bsize - index;
39 len -= bsize - index;
Herbert Xu9d20b572011-02-07 20:26:06 +1100[diff] [blame]40 index = 0;
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]41 }
42
43 /* process as many blocks as possible */
44 if (len >= bsize) {
Martin Schwidefsky0177db02016-08-15 10:41:52 +0200[diff] [blame]45 n = len & ~(bsize - 1);
46 cpacf_kimd(ctx->func, ctx->state, data, n);
47 data += n;
48 len -= n;
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]49 }
50store:
51 if (len)
52 memcpy(ctx->buf + index , data, len);
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]53
54 return 0;
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]55}
56EXPORT_SYMBOL_GPL(s390_sha_update);
57
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]58int s390_sha_final(struct shash_desc *desc, u8 *out)
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]59{
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]60 struct s390_sha_ctx *ctx = shash_desc_ctx(desc);
61 unsigned int bsize = crypto_shash_blocksize(desc->tfm);
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]62 u64 bits;
Jan Glauber291dc7c2008-03-06 19:52:00 +0800[diff] [blame]63 unsigned int index, end, plen;
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]64
Jan Glauber291dc7c2008-03-06 19:52:00 +0800[diff] [blame]65 /* SHA-512 uses 128 bit padding length */
66 plen = (bsize > SHA256_BLOCK_SIZE) ? 16 : 8;
67
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]68 /* must perform manual padding */
69 index = ctx->count & (bsize - 1);
Jan Glauber291dc7c2008-03-06 19:52:00 +0800[diff] [blame]70 end = (index < bsize - plen) ? bsize : (2 * bsize);
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]71
72 /* start pad with 1 */
73 ctx->buf[index] = 0x80;
74 index++;
75
76 /* pad with zeros */
77 memset(ctx->buf + index, 0x00, end - index - 8);
78
Jan Glauber291dc7c2008-03-06 19:52:00 +0800[diff] [blame]79 /*
Daniel Mack1537a362010-01-29 15:57:49 +0800[diff] [blame]80 * Append message length. Well, SHA-512 wants a 128 bit length value,
Jan Glauber291dc7c2008-03-06 19:52:00 +0800[diff] [blame]81 * nevertheless we use u64, should be enough for now...
82 */
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]83 bits = ctx->count * 8;
84 memcpy(ctx->buf + end - 8, &bits, sizeof(bits));
Martin Schwidefsky0177db02016-08-15 10:41:52 +0200[diff] [blame]85 cpacf_kimd(ctx->func, ctx->state, ctx->buf, end);
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]86
87 /* copy digest to out */
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]88 memcpy(out, ctx->state, crypto_shash_digestsize(desc->tfm));
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]89 /* wipe context */
90 memset(ctx, 0, sizeof *ctx);
Herbert Xu563f3462009-01-18 20:33:33 +1100[diff] [blame]91
92 return 0;
Jan Glauber604973f2008-03-06 19:50:20 +0800[diff] [blame]93}
94EXPORT_SYMBOL_GPL(s390_sha_final);
95
96MODULE_LICENSE("GPL");
97MODULE_DESCRIPTION("s390 SHA cipher common functions");