xref: /openbmc/linux/crypto/sha1_generic.c (revision 5d26a105) 
1ad5d2789SSebastian Siewior /*
2ad5d2789SSebastian Siewior  * Cryptographic API.
3ad5d2789SSebastian Siewior  *
4ad5d2789SSebastian Siewior  * SHA1 Secure Hash Algorithm.
5ad5d2789SSebastian Siewior  *
6ad5d2789SSebastian Siewior  * Derived from cryptoapi implementation, adapted for in-place
7ad5d2789SSebastian Siewior  * scatterlist interface.
8ad5d2789SSebastian Siewior  *
9ad5d2789SSebastian Siewior  * Copyright (c) Alan Smithee.
10ad5d2789SSebastian Siewior  * Copyright (c) Andrew McDonald <andrew@mcdonald.org.uk>
11ad5d2789SSebastian Siewior  * Copyright (c) Jean-Francois Dive <jef@linuxbe.org>
12ad5d2789SSebastian Siewior  *
13ad5d2789SSebastian Siewior  * This program is free software; you can redistribute it and/or modify it
14ad5d2789SSebastian Siewior  * under the terms of the GNU General Public License as published by the Free
15ad5d2789SSebastian Siewior  * Software Foundation; either version 2 of the License, or (at your option)
16ad5d2789SSebastian Siewior  * any later version.
17ad5d2789SSebastian Siewior  *
18ad5d2789SSebastian Siewior  */
1954ccb367SAdrian-Ken Rueegsegger #include <crypto/internal/hash.h>
20ad5d2789SSebastian Siewior #include <linux/init.h>
21ad5d2789SSebastian Siewior #include <linux/module.h>
22ad5d2789SSebastian Siewior #include <linux/mm.h>
23ad5d2789SSebastian Siewior #include <linux/cryptohash.h>
24ad5d2789SSebastian Siewior #include <linux/types.h>
255265eeb2SJan Glauber #include <crypto/sha.h>
26ad5d2789SSebastian Siewior #include <asm/byteorder.h>
27ad5d2789SSebastian Siewior 
2854ccb367SAdrian-Ken Rueegsegger static int sha1_init(struct shash_desc *desc)
29ad5d2789SSebastian Siewior {
30e2a7ce4eSHerbert Xu 	struct sha1_state *sctx = shash_desc_ctx(desc);
3154ccb367SAdrian-Ken Rueegsegger 
32e2a7ce4eSHerbert Xu 	*sctx = (struct sha1_state){
33e2a7ce4eSHerbert Xu 		.state = { SHA1_H0, SHA1_H1, SHA1_H2, SHA1_H3, SHA1_H4 },
34ad5d2789SSebastian Siewior 	};
35ad5d2789SSebastian Siewior 
3654ccb367SAdrian-Ken Rueegsegger 	return 0;
37ad5d2789SSebastian Siewior }
38ad5d2789SSebastian Siewior 
397c390170SMathias Krause int crypto_sha1_update(struct shash_desc *desc, const u8 *data,
40ad5d2789SSebastian Siewior 			unsigned int len)
41ad5d2789SSebastian Siewior {
42e2a7ce4eSHerbert Xu 	struct sha1_state *sctx = shash_desc_ctx(desc);
43ad5d2789SSebastian Siewior 	unsigned int partial, done;
44ad5d2789SSebastian Siewior 	const u8 *src;
45ad5d2789SSebastian Siewior 
4636ca239bSMandeep Singh Baines 	partial = sctx->count % SHA1_BLOCK_SIZE;
47ad5d2789SSebastian Siewior 	sctx->count += len;
48ad5d2789SSebastian Siewior 	done = 0;
49ad5d2789SSebastian Siewior 	src = data;
50ad5d2789SSebastian Siewior 
5136ca239bSMandeep Singh Baines 	if ((partial + len) >= SHA1_BLOCK_SIZE) {
52ad5d2789SSebastian Siewior 		u32 temp[SHA_WORKSPACE_WORDS];
53ad5d2789SSebastian Siewior 
54ad5d2789SSebastian Siewior 		if (partial) {
55ad5d2789SSebastian Siewior 			done = -partial;
5636ca239bSMandeep Singh Baines 			memcpy(sctx->buffer + partial, data,
5736ca239bSMandeep Singh Baines 			       done + SHA1_BLOCK_SIZE);
58ad5d2789SSebastian Siewior 			src = sctx->buffer;
59ad5d2789SSebastian Siewior 		}
60ad5d2789SSebastian Siewior 
61ad5d2789SSebastian Siewior 		do {
62ad5d2789SSebastian Siewior 			sha_transform(sctx->state, src, temp);
6336ca239bSMandeep Singh Baines 			done += SHA1_BLOCK_SIZE;
64ad5d2789SSebastian Siewior 			src = data + done;
6536ca239bSMandeep Singh Baines 		} while (done + SHA1_BLOCK_SIZE <= len);
66ad5d2789SSebastian Siewior 
677185ad26SDaniel Borkmann 		memzero_explicit(temp, sizeof(temp));
68ad5d2789SSebastian Siewior 		partial = 0;
69ad5d2789SSebastian Siewior 	}
70ad5d2789SSebastian Siewior 	memcpy(sctx->buffer + partial, src, len - done);
7154ccb367SAdrian-Ken Rueegsegger 
7254ccb367SAdrian-Ken Rueegsegger 	return 0;
73ad5d2789SSebastian Siewior }
747c390170SMathias Krause EXPORT_SYMBOL(crypto_sha1_update);
75ad5d2789SSebastian Siewior 
76ad5d2789SSebastian Siewior 
77ad5d2789SSebastian Siewior /* Add padding and return the message digest. */
7854ccb367SAdrian-Ken Rueegsegger static int sha1_final(struct shash_desc *desc, u8 *out)
79ad5d2789SSebastian Siewior {
80e2a7ce4eSHerbert Xu 	struct sha1_state *sctx = shash_desc_ctx(desc);
81ad5d2789SSebastian Siewior 	__be32 *dst = (__be32 *)out;
82ad5d2789SSebastian Siewior 	u32 i, index, padlen;
83ad5d2789SSebastian Siewior 	__be64 bits;
84ad5d2789SSebastian Siewior 	static const u8 padding[64] = { 0x80, };
85ad5d2789SSebastian Siewior 
86ad5d2789SSebastian Siewior 	bits = cpu_to_be64(sctx->count << 3);
87ad5d2789SSebastian Siewior 
88ad5d2789SSebastian Siewior 	/* Pad out to 56 mod 64 */
89ad5d2789SSebastian Siewior 	index = sctx->count & 0x3f;
90ad5d2789SSebastian Siewior 	padlen = (index < 56) ? (56 - index) : ((64+56) - index);
917c390170SMathias Krause 	crypto_sha1_update(desc, padding, padlen);
92ad5d2789SSebastian Siewior 
93ad5d2789SSebastian Siewior 	/* Append length */
947c390170SMathias Krause 	crypto_sha1_update(desc, (const u8 *)&bits, sizeof(bits));
95ad5d2789SSebastian Siewior 
96ad5d2789SSebastian Siewior 	/* Store state in digest */
97ad5d2789SSebastian Siewior 	for (i = 0; i < 5; i++)
98ad5d2789SSebastian Siewior 		dst[i] = cpu_to_be32(sctx->state[i]);
99ad5d2789SSebastian Siewior 
100ad5d2789SSebastian Siewior 	/* Wipe context */
101ad5d2789SSebastian Siewior 	memset(sctx, 0, sizeof *sctx);
10254ccb367SAdrian-Ken Rueegsegger 
10354ccb367SAdrian-Ken Rueegsegger 	return 0;
104ad5d2789SSebastian Siewior }
105ad5d2789SSebastian Siewior 
106e2a7ce4eSHerbert Xu static int sha1_export(struct shash_desc *desc, void *out)
107e2a7ce4eSHerbert Xu {
108e2a7ce4eSHerbert Xu 	struct sha1_state *sctx = shash_desc_ctx(desc);
109e2a7ce4eSHerbert Xu 
110e2a7ce4eSHerbert Xu 	memcpy(out, sctx, sizeof(*sctx));
111e2a7ce4eSHerbert Xu 	return 0;
112e2a7ce4eSHerbert Xu }
113e2a7ce4eSHerbert Xu 
114e2a7ce4eSHerbert Xu static int sha1_import(struct shash_desc *desc, const void *in)
115e2a7ce4eSHerbert Xu {
116e2a7ce4eSHerbert Xu 	struct sha1_state *sctx = shash_desc_ctx(desc);
117e2a7ce4eSHerbert Xu 
118e2a7ce4eSHerbert Xu 	memcpy(sctx, in, sizeof(*sctx));
119e2a7ce4eSHerbert Xu 	return 0;
120e2a7ce4eSHerbert Xu }
121e2a7ce4eSHerbert Xu 
12254ccb367SAdrian-Ken Rueegsegger static struct shash_alg alg = {
12354ccb367SAdrian-Ken Rueegsegger 	.digestsize	=	SHA1_DIGEST_SIZE,
12454ccb367SAdrian-Ken Rueegsegger 	.init		=	sha1_init,
1257c390170SMathias Krause 	.update		=	crypto_sha1_update,
12654ccb367SAdrian-Ken Rueegsegger 	.final		=	sha1_final,
127e2a7ce4eSHerbert Xu 	.export		=	sha1_export,
128e2a7ce4eSHerbert Xu 	.import		=	sha1_import,
129e2a7ce4eSHerbert Xu 	.descsize	=	sizeof(struct sha1_state),
130e2a7ce4eSHerbert Xu 	.statesize	=	sizeof(struct sha1_state),
13154ccb367SAdrian-Ken Rueegsegger 	.base		=	{
132ad5d2789SSebastian Siewior 		.cra_name	=	"sha1",
133ad5d2789SSebastian Siewior 		.cra_driver_name=	"sha1-generic",
13454ccb367SAdrian-Ken Rueegsegger 		.cra_flags	=	CRYPTO_ALG_TYPE_SHASH,
1355265eeb2SJan Glauber 		.cra_blocksize	=	SHA1_BLOCK_SIZE,
136ad5d2789SSebastian Siewior 		.cra_module	=	THIS_MODULE,
13754ccb367SAdrian-Ken Rueegsegger 	}
138ad5d2789SSebastian Siewior };
139ad5d2789SSebastian Siewior 
1403af5b90bSKamalesh Babulal static int __init sha1_generic_mod_init(void)
141ad5d2789SSebastian Siewior {
14254ccb367SAdrian-Ken Rueegsegger 	return crypto_register_shash(&alg);
143ad5d2789SSebastian Siewior }
144ad5d2789SSebastian Siewior 
1453af5b90bSKamalesh Babulal static void __exit sha1_generic_mod_fini(void)
146ad5d2789SSebastian Siewior {
14754ccb367SAdrian-Ken Rueegsegger 	crypto_unregister_shash(&alg);
148ad5d2789SSebastian Siewior }
149ad5d2789SSebastian Siewior 
1503af5b90bSKamalesh Babulal module_init(sha1_generic_mod_init);
1513af5b90bSKamalesh Babulal module_exit(sha1_generic_mod_fini);
152ad5d2789SSebastian Siewior 
153ad5d2789SSebastian Siewior MODULE_LICENSE("GPL");
154ad5d2789SSebastian Siewior MODULE_DESCRIPTION("SHA1 Secure Hash Algorithm");
155ad5d2789SSebastian Siewior 
1565d26a105SKees Cook MODULE_ALIAS_CRYPTO("sha1");
157