1*4882a593Smuzhiyun /* mpicoder.c - Coder for the external representation of MPIs
2*4882a593Smuzhiyun * Copyright (C) 1998, 1999 Free Software Foundation, Inc.
3*4882a593Smuzhiyun *
4*4882a593Smuzhiyun * This file is part of GnuPG.
5*4882a593Smuzhiyun *
6*4882a593Smuzhiyun * GnuPG is free software; you can redistribute it and/or modify
7*4882a593Smuzhiyun * it under the terms of the GNU General Public License as published by
8*4882a593Smuzhiyun * the Free Software Foundation; either version 2 of the License, or
9*4882a593Smuzhiyun * (at your option) any later version.
10*4882a593Smuzhiyun *
11*4882a593Smuzhiyun * GnuPG is distributed in the hope that it will be useful,
12*4882a593Smuzhiyun * but WITHOUT ANY WARRANTY; without even the implied warranty of
13*4882a593Smuzhiyun * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14*4882a593Smuzhiyun * GNU General Public License for more details.
15*4882a593Smuzhiyun *
16*4882a593Smuzhiyun * You should have received a copy of the GNU General Public License
17*4882a593Smuzhiyun * along with this program; if not, write to the Free Software
18*4882a593Smuzhiyun * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA
19*4882a593Smuzhiyun */
20*4882a593Smuzhiyun
21*4882a593Smuzhiyun #include <linux/bitops.h>
22*4882a593Smuzhiyun #include <linux/count_zeros.h>
23*4882a593Smuzhiyun #include <linux/byteorder/generic.h>
24*4882a593Smuzhiyun #include <linux/scatterlist.h>
25*4882a593Smuzhiyun #include <linux/string.h>
26*4882a593Smuzhiyun #include "mpi-internal.h"
27*4882a593Smuzhiyun
28*4882a593Smuzhiyun #define MAX_EXTERN_SCAN_BYTES (16*1024*1024)
29*4882a593Smuzhiyun #define MAX_EXTERN_MPI_BITS 16384
30*4882a593Smuzhiyun
31*4882a593Smuzhiyun /**
32*4882a593Smuzhiyun * mpi_read_raw_data - Read a raw byte stream as a positive integer
33*4882a593Smuzhiyun * @xbuffer: The data to read
34*4882a593Smuzhiyun * @nbytes: The amount of data to read
35*4882a593Smuzhiyun */
mpi_read_raw_data(const void * xbuffer,size_t nbytes)36*4882a593Smuzhiyun MPI mpi_read_raw_data(const void *xbuffer, size_t nbytes)
37*4882a593Smuzhiyun {
38*4882a593Smuzhiyun const uint8_t *buffer = xbuffer;
39*4882a593Smuzhiyun int i, j;
40*4882a593Smuzhiyun unsigned nbits, nlimbs;
41*4882a593Smuzhiyun mpi_limb_t a;
42*4882a593Smuzhiyun MPI val = NULL;
43*4882a593Smuzhiyun
44*4882a593Smuzhiyun while (nbytes > 0 && buffer[0] == 0) {
45*4882a593Smuzhiyun buffer++;
46*4882a593Smuzhiyun nbytes--;
47*4882a593Smuzhiyun }
48*4882a593Smuzhiyun
49*4882a593Smuzhiyun nbits = nbytes * 8;
50*4882a593Smuzhiyun if (nbits > MAX_EXTERN_MPI_BITS) {
51*4882a593Smuzhiyun pr_info("MPI: mpi too large (%u bits)\n", nbits);
52*4882a593Smuzhiyun return NULL;
53*4882a593Smuzhiyun }
54*4882a593Smuzhiyun if (nbytes > 0)
55*4882a593Smuzhiyun nbits -= count_leading_zeros(buffer[0]) - (BITS_PER_LONG - 8);
56*4882a593Smuzhiyun
57*4882a593Smuzhiyun nlimbs = DIV_ROUND_UP(nbytes, BYTES_PER_MPI_LIMB);
58*4882a593Smuzhiyun val = mpi_alloc(nlimbs);
59*4882a593Smuzhiyun if (!val)
60*4882a593Smuzhiyun return NULL;
61*4882a593Smuzhiyun val->nbits = nbits;
62*4882a593Smuzhiyun val->sign = 0;
63*4882a593Smuzhiyun val->nlimbs = nlimbs;
64*4882a593Smuzhiyun
65*4882a593Smuzhiyun if (nbytes > 0) {
66*4882a593Smuzhiyun i = BYTES_PER_MPI_LIMB - nbytes % BYTES_PER_MPI_LIMB;
67*4882a593Smuzhiyun i %= BYTES_PER_MPI_LIMB;
68*4882a593Smuzhiyun for (j = nlimbs; j > 0; j--) {
69*4882a593Smuzhiyun a = 0;
70*4882a593Smuzhiyun for (; i < BYTES_PER_MPI_LIMB; i++) {
71*4882a593Smuzhiyun a <<= 8;
72*4882a593Smuzhiyun a |= *buffer++;
73*4882a593Smuzhiyun }
74*4882a593Smuzhiyun i = 0;
75*4882a593Smuzhiyun val->d[j - 1] = a;
76*4882a593Smuzhiyun }
77*4882a593Smuzhiyun }
78*4882a593Smuzhiyun return val;
79*4882a593Smuzhiyun }
80*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_read_raw_data);
81*4882a593Smuzhiyun
mpi_read_from_buffer(const void * xbuffer,unsigned * ret_nread)82*4882a593Smuzhiyun MPI mpi_read_from_buffer(const void *xbuffer, unsigned *ret_nread)
83*4882a593Smuzhiyun {
84*4882a593Smuzhiyun const uint8_t *buffer = xbuffer;
85*4882a593Smuzhiyun unsigned int nbits, nbytes;
86*4882a593Smuzhiyun MPI val;
87*4882a593Smuzhiyun
88*4882a593Smuzhiyun if (*ret_nread < 2)
89*4882a593Smuzhiyun return ERR_PTR(-EINVAL);
90*4882a593Smuzhiyun nbits = buffer[0] << 8 | buffer[1];
91*4882a593Smuzhiyun
92*4882a593Smuzhiyun if (nbits > MAX_EXTERN_MPI_BITS) {
93*4882a593Smuzhiyun pr_info("MPI: mpi too large (%u bits)\n", nbits);
94*4882a593Smuzhiyun return ERR_PTR(-EINVAL);
95*4882a593Smuzhiyun }
96*4882a593Smuzhiyun
97*4882a593Smuzhiyun nbytes = DIV_ROUND_UP(nbits, 8);
98*4882a593Smuzhiyun if (nbytes + 2 > *ret_nread) {
99*4882a593Smuzhiyun pr_info("MPI: mpi larger than buffer nbytes=%u ret_nread=%u\n",
100*4882a593Smuzhiyun nbytes, *ret_nread);
101*4882a593Smuzhiyun return ERR_PTR(-EINVAL);
102*4882a593Smuzhiyun }
103*4882a593Smuzhiyun
104*4882a593Smuzhiyun val = mpi_read_raw_data(buffer + 2, nbytes);
105*4882a593Smuzhiyun if (!val)
106*4882a593Smuzhiyun return ERR_PTR(-ENOMEM);
107*4882a593Smuzhiyun
108*4882a593Smuzhiyun *ret_nread = nbytes + 2;
109*4882a593Smuzhiyun return val;
110*4882a593Smuzhiyun }
111*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_read_from_buffer);
112*4882a593Smuzhiyun
113*4882a593Smuzhiyun /****************
114*4882a593Smuzhiyun * Fill the mpi VAL from the hex string in STR.
115*4882a593Smuzhiyun */
mpi_fromstr(MPI val,const char * str)116*4882a593Smuzhiyun int mpi_fromstr(MPI val, const char *str)
117*4882a593Smuzhiyun {
118*4882a593Smuzhiyun int sign = 0;
119*4882a593Smuzhiyun int prepend_zero = 0;
120*4882a593Smuzhiyun int i, j, c, c1, c2;
121*4882a593Smuzhiyun unsigned int nbits, nbytes, nlimbs;
122*4882a593Smuzhiyun mpi_limb_t a;
123*4882a593Smuzhiyun
124*4882a593Smuzhiyun if (*str == '-') {
125*4882a593Smuzhiyun sign = 1;
126*4882a593Smuzhiyun str++;
127*4882a593Smuzhiyun }
128*4882a593Smuzhiyun
129*4882a593Smuzhiyun /* Skip optional hex prefix. */
130*4882a593Smuzhiyun if (*str == '0' && str[1] == 'x')
131*4882a593Smuzhiyun str += 2;
132*4882a593Smuzhiyun
133*4882a593Smuzhiyun nbits = strlen(str);
134*4882a593Smuzhiyun if (nbits > MAX_EXTERN_SCAN_BYTES) {
135*4882a593Smuzhiyun mpi_clear(val);
136*4882a593Smuzhiyun return -EINVAL;
137*4882a593Smuzhiyun }
138*4882a593Smuzhiyun nbits *= 4;
139*4882a593Smuzhiyun if ((nbits % 8))
140*4882a593Smuzhiyun prepend_zero = 1;
141*4882a593Smuzhiyun
142*4882a593Smuzhiyun nbytes = (nbits+7) / 8;
143*4882a593Smuzhiyun nlimbs = (nbytes+BYTES_PER_MPI_LIMB-1) / BYTES_PER_MPI_LIMB;
144*4882a593Smuzhiyun
145*4882a593Smuzhiyun if (val->alloced < nlimbs)
146*4882a593Smuzhiyun mpi_resize(val, nlimbs);
147*4882a593Smuzhiyun
148*4882a593Smuzhiyun i = BYTES_PER_MPI_LIMB - (nbytes % BYTES_PER_MPI_LIMB);
149*4882a593Smuzhiyun i %= BYTES_PER_MPI_LIMB;
150*4882a593Smuzhiyun j = val->nlimbs = nlimbs;
151*4882a593Smuzhiyun val->sign = sign;
152*4882a593Smuzhiyun for (; j > 0; j--) {
153*4882a593Smuzhiyun a = 0;
154*4882a593Smuzhiyun for (; i < BYTES_PER_MPI_LIMB; i++) {
155*4882a593Smuzhiyun if (prepend_zero) {
156*4882a593Smuzhiyun c1 = '0';
157*4882a593Smuzhiyun prepend_zero = 0;
158*4882a593Smuzhiyun } else
159*4882a593Smuzhiyun c1 = *str++;
160*4882a593Smuzhiyun
161*4882a593Smuzhiyun if (!c1) {
162*4882a593Smuzhiyun mpi_clear(val);
163*4882a593Smuzhiyun return -EINVAL;
164*4882a593Smuzhiyun }
165*4882a593Smuzhiyun c2 = *str++;
166*4882a593Smuzhiyun if (!c2) {
167*4882a593Smuzhiyun mpi_clear(val);
168*4882a593Smuzhiyun return -EINVAL;
169*4882a593Smuzhiyun }
170*4882a593Smuzhiyun if (c1 >= '0' && c1 <= '9')
171*4882a593Smuzhiyun c = c1 - '0';
172*4882a593Smuzhiyun else if (c1 >= 'a' && c1 <= 'f')
173*4882a593Smuzhiyun c = c1 - 'a' + 10;
174*4882a593Smuzhiyun else if (c1 >= 'A' && c1 <= 'F')
175*4882a593Smuzhiyun c = c1 - 'A' + 10;
176*4882a593Smuzhiyun else {
177*4882a593Smuzhiyun mpi_clear(val);
178*4882a593Smuzhiyun return -EINVAL;
179*4882a593Smuzhiyun }
180*4882a593Smuzhiyun c <<= 4;
181*4882a593Smuzhiyun if (c2 >= '0' && c2 <= '9')
182*4882a593Smuzhiyun c |= c2 - '0';
183*4882a593Smuzhiyun else if (c2 >= 'a' && c2 <= 'f')
184*4882a593Smuzhiyun c |= c2 - 'a' + 10;
185*4882a593Smuzhiyun else if (c2 >= 'A' && c2 <= 'F')
186*4882a593Smuzhiyun c |= c2 - 'A' + 10;
187*4882a593Smuzhiyun else {
188*4882a593Smuzhiyun mpi_clear(val);
189*4882a593Smuzhiyun return -EINVAL;
190*4882a593Smuzhiyun }
191*4882a593Smuzhiyun a <<= 8;
192*4882a593Smuzhiyun a |= c;
193*4882a593Smuzhiyun }
194*4882a593Smuzhiyun i = 0;
195*4882a593Smuzhiyun val->d[j-1] = a;
196*4882a593Smuzhiyun }
197*4882a593Smuzhiyun
198*4882a593Smuzhiyun return 0;
199*4882a593Smuzhiyun }
200*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_fromstr);
201*4882a593Smuzhiyun
mpi_scanval(const char * string)202*4882a593Smuzhiyun MPI mpi_scanval(const char *string)
203*4882a593Smuzhiyun {
204*4882a593Smuzhiyun MPI a;
205*4882a593Smuzhiyun
206*4882a593Smuzhiyun a = mpi_alloc(0);
207*4882a593Smuzhiyun if (!a)
208*4882a593Smuzhiyun return NULL;
209*4882a593Smuzhiyun
210*4882a593Smuzhiyun if (mpi_fromstr(a, string)) {
211*4882a593Smuzhiyun mpi_free(a);
212*4882a593Smuzhiyun return NULL;
213*4882a593Smuzhiyun }
214*4882a593Smuzhiyun mpi_normalize(a);
215*4882a593Smuzhiyun return a;
216*4882a593Smuzhiyun }
217*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_scanval);
218*4882a593Smuzhiyun
count_lzeros(MPI a)219*4882a593Smuzhiyun static int count_lzeros(MPI a)
220*4882a593Smuzhiyun {
221*4882a593Smuzhiyun mpi_limb_t alimb;
222*4882a593Smuzhiyun int i, lzeros = 0;
223*4882a593Smuzhiyun
224*4882a593Smuzhiyun for (i = a->nlimbs - 1; i >= 0; i--) {
225*4882a593Smuzhiyun alimb = a->d[i];
226*4882a593Smuzhiyun if (alimb == 0) {
227*4882a593Smuzhiyun lzeros += sizeof(mpi_limb_t);
228*4882a593Smuzhiyun } else {
229*4882a593Smuzhiyun lzeros += count_leading_zeros(alimb) / 8;
230*4882a593Smuzhiyun break;
231*4882a593Smuzhiyun }
232*4882a593Smuzhiyun }
233*4882a593Smuzhiyun return lzeros;
234*4882a593Smuzhiyun }
235*4882a593Smuzhiyun
236*4882a593Smuzhiyun /**
237*4882a593Smuzhiyun * mpi_read_buffer() - read MPI to a bufer provided by user (msb first)
238*4882a593Smuzhiyun *
239*4882a593Smuzhiyun * @a: a multi precision integer
240*4882a593Smuzhiyun * @buf: bufer to which the output will be written to. Needs to be at
241*4882a593Smuzhiyun * leaset mpi_get_size(a) long.
242*4882a593Smuzhiyun * @buf_len: size of the buf.
243*4882a593Smuzhiyun * @nbytes: receives the actual length of the data written on success and
244*4882a593Smuzhiyun * the data to-be-written on -EOVERFLOW in case buf_len was too
245*4882a593Smuzhiyun * small.
246*4882a593Smuzhiyun * @sign: if not NULL, it will be set to the sign of a.
247*4882a593Smuzhiyun *
248*4882a593Smuzhiyun * Return: 0 on success or error code in case of error
249*4882a593Smuzhiyun */
mpi_read_buffer(MPI a,uint8_t * buf,unsigned buf_len,unsigned * nbytes,int * sign)250*4882a593Smuzhiyun int mpi_read_buffer(MPI a, uint8_t *buf, unsigned buf_len, unsigned *nbytes,
251*4882a593Smuzhiyun int *sign)
252*4882a593Smuzhiyun {
253*4882a593Smuzhiyun uint8_t *p;
254*4882a593Smuzhiyun #if BYTES_PER_MPI_LIMB == 4
255*4882a593Smuzhiyun __be32 alimb;
256*4882a593Smuzhiyun #elif BYTES_PER_MPI_LIMB == 8
257*4882a593Smuzhiyun __be64 alimb;
258*4882a593Smuzhiyun #else
259*4882a593Smuzhiyun #error please implement for this limb size.
260*4882a593Smuzhiyun #endif
261*4882a593Smuzhiyun unsigned int n = mpi_get_size(a);
262*4882a593Smuzhiyun int i, lzeros;
263*4882a593Smuzhiyun
264*4882a593Smuzhiyun if (!buf || !nbytes)
265*4882a593Smuzhiyun return -EINVAL;
266*4882a593Smuzhiyun
267*4882a593Smuzhiyun if (sign)
268*4882a593Smuzhiyun *sign = a->sign;
269*4882a593Smuzhiyun
270*4882a593Smuzhiyun lzeros = count_lzeros(a);
271*4882a593Smuzhiyun
272*4882a593Smuzhiyun if (buf_len < n - lzeros) {
273*4882a593Smuzhiyun *nbytes = n - lzeros;
274*4882a593Smuzhiyun return -EOVERFLOW;
275*4882a593Smuzhiyun }
276*4882a593Smuzhiyun
277*4882a593Smuzhiyun p = buf;
278*4882a593Smuzhiyun *nbytes = n - lzeros;
279*4882a593Smuzhiyun
280*4882a593Smuzhiyun for (i = a->nlimbs - 1 - lzeros / BYTES_PER_MPI_LIMB,
281*4882a593Smuzhiyun lzeros %= BYTES_PER_MPI_LIMB;
282*4882a593Smuzhiyun i >= 0; i--) {
283*4882a593Smuzhiyun #if BYTES_PER_MPI_LIMB == 4
284*4882a593Smuzhiyun alimb = cpu_to_be32(a->d[i]);
285*4882a593Smuzhiyun #elif BYTES_PER_MPI_LIMB == 8
286*4882a593Smuzhiyun alimb = cpu_to_be64(a->d[i]);
287*4882a593Smuzhiyun #else
288*4882a593Smuzhiyun #error please implement for this limb size.
289*4882a593Smuzhiyun #endif
290*4882a593Smuzhiyun memcpy(p, (u8 *)&alimb + lzeros, BYTES_PER_MPI_LIMB - lzeros);
291*4882a593Smuzhiyun p += BYTES_PER_MPI_LIMB - lzeros;
292*4882a593Smuzhiyun lzeros = 0;
293*4882a593Smuzhiyun }
294*4882a593Smuzhiyun return 0;
295*4882a593Smuzhiyun }
296*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_read_buffer);
297*4882a593Smuzhiyun
298*4882a593Smuzhiyun /*
299*4882a593Smuzhiyun * mpi_get_buffer() - Returns an allocated buffer with the MPI (msb first).
300*4882a593Smuzhiyun * Caller must free the return string.
301*4882a593Smuzhiyun * This function does return a 0 byte buffer with nbytes set to zero if the
302*4882a593Smuzhiyun * value of A is zero.
303*4882a593Smuzhiyun *
304*4882a593Smuzhiyun * @a: a multi precision integer.
305*4882a593Smuzhiyun * @nbytes: receives the length of this buffer.
306*4882a593Smuzhiyun * @sign: if not NULL, it will be set to the sign of the a.
307*4882a593Smuzhiyun *
308*4882a593Smuzhiyun * Return: Pointer to MPI buffer or NULL on error
309*4882a593Smuzhiyun */
mpi_get_buffer(MPI a,unsigned * nbytes,int * sign)310*4882a593Smuzhiyun void *mpi_get_buffer(MPI a, unsigned *nbytes, int *sign)
311*4882a593Smuzhiyun {
312*4882a593Smuzhiyun uint8_t *buf;
313*4882a593Smuzhiyun unsigned int n;
314*4882a593Smuzhiyun int ret;
315*4882a593Smuzhiyun
316*4882a593Smuzhiyun if (!nbytes)
317*4882a593Smuzhiyun return NULL;
318*4882a593Smuzhiyun
319*4882a593Smuzhiyun n = mpi_get_size(a);
320*4882a593Smuzhiyun
321*4882a593Smuzhiyun if (!n)
322*4882a593Smuzhiyun n++;
323*4882a593Smuzhiyun
324*4882a593Smuzhiyun buf = kmalloc(n, GFP_KERNEL);
325*4882a593Smuzhiyun
326*4882a593Smuzhiyun if (!buf)
327*4882a593Smuzhiyun return NULL;
328*4882a593Smuzhiyun
329*4882a593Smuzhiyun ret = mpi_read_buffer(a, buf, n, nbytes, sign);
330*4882a593Smuzhiyun
331*4882a593Smuzhiyun if (ret) {
332*4882a593Smuzhiyun kfree(buf);
333*4882a593Smuzhiyun return NULL;
334*4882a593Smuzhiyun }
335*4882a593Smuzhiyun return buf;
336*4882a593Smuzhiyun }
337*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_get_buffer);
338*4882a593Smuzhiyun
339*4882a593Smuzhiyun /**
340*4882a593Smuzhiyun * mpi_write_to_sgl() - Funnction exports MPI to an sgl (msb first)
341*4882a593Smuzhiyun *
342*4882a593Smuzhiyun * This function works in the same way as the mpi_read_buffer, but it
343*4882a593Smuzhiyun * takes an sgl instead of u8 * buf.
344*4882a593Smuzhiyun *
345*4882a593Smuzhiyun * @a: a multi precision integer
346*4882a593Smuzhiyun * @sgl: scatterlist to write to. Needs to be at least
347*4882a593Smuzhiyun * mpi_get_size(a) long.
348*4882a593Smuzhiyun * @nbytes: the number of bytes to write. Leading bytes will be
349*4882a593Smuzhiyun * filled with zero.
350*4882a593Smuzhiyun * @sign: if not NULL, it will be set to the sign of a.
351*4882a593Smuzhiyun *
352*4882a593Smuzhiyun * Return: 0 on success or error code in case of error
353*4882a593Smuzhiyun */
mpi_write_to_sgl(MPI a,struct scatterlist * sgl,unsigned nbytes,int * sign)354*4882a593Smuzhiyun int mpi_write_to_sgl(MPI a, struct scatterlist *sgl, unsigned nbytes,
355*4882a593Smuzhiyun int *sign)
356*4882a593Smuzhiyun {
357*4882a593Smuzhiyun u8 *p, *p2;
358*4882a593Smuzhiyun #if BYTES_PER_MPI_LIMB == 4
359*4882a593Smuzhiyun __be32 alimb;
360*4882a593Smuzhiyun #elif BYTES_PER_MPI_LIMB == 8
361*4882a593Smuzhiyun __be64 alimb;
362*4882a593Smuzhiyun #else
363*4882a593Smuzhiyun #error please implement for this limb size.
364*4882a593Smuzhiyun #endif
365*4882a593Smuzhiyun unsigned int n = mpi_get_size(a);
366*4882a593Smuzhiyun struct sg_mapping_iter miter;
367*4882a593Smuzhiyun int i, x, buf_len;
368*4882a593Smuzhiyun int nents;
369*4882a593Smuzhiyun
370*4882a593Smuzhiyun if (sign)
371*4882a593Smuzhiyun *sign = a->sign;
372*4882a593Smuzhiyun
373*4882a593Smuzhiyun if (nbytes < n)
374*4882a593Smuzhiyun return -EOVERFLOW;
375*4882a593Smuzhiyun
376*4882a593Smuzhiyun nents = sg_nents_for_len(sgl, nbytes);
377*4882a593Smuzhiyun if (nents < 0)
378*4882a593Smuzhiyun return -EINVAL;
379*4882a593Smuzhiyun
380*4882a593Smuzhiyun sg_miter_start(&miter, sgl, nents, SG_MITER_ATOMIC | SG_MITER_TO_SG);
381*4882a593Smuzhiyun sg_miter_next(&miter);
382*4882a593Smuzhiyun buf_len = miter.length;
383*4882a593Smuzhiyun p2 = miter.addr;
384*4882a593Smuzhiyun
385*4882a593Smuzhiyun while (nbytes > n) {
386*4882a593Smuzhiyun i = min_t(unsigned, nbytes - n, buf_len);
387*4882a593Smuzhiyun memset(p2, 0, i);
388*4882a593Smuzhiyun p2 += i;
389*4882a593Smuzhiyun nbytes -= i;
390*4882a593Smuzhiyun
391*4882a593Smuzhiyun buf_len -= i;
392*4882a593Smuzhiyun if (!buf_len) {
393*4882a593Smuzhiyun sg_miter_next(&miter);
394*4882a593Smuzhiyun buf_len = miter.length;
395*4882a593Smuzhiyun p2 = miter.addr;
396*4882a593Smuzhiyun }
397*4882a593Smuzhiyun }
398*4882a593Smuzhiyun
399*4882a593Smuzhiyun for (i = a->nlimbs - 1; i >= 0; i--) {
400*4882a593Smuzhiyun #if BYTES_PER_MPI_LIMB == 4
401*4882a593Smuzhiyun alimb = a->d[i] ? cpu_to_be32(a->d[i]) : 0;
402*4882a593Smuzhiyun #elif BYTES_PER_MPI_LIMB == 8
403*4882a593Smuzhiyun alimb = a->d[i] ? cpu_to_be64(a->d[i]) : 0;
404*4882a593Smuzhiyun #else
405*4882a593Smuzhiyun #error please implement for this limb size.
406*4882a593Smuzhiyun #endif
407*4882a593Smuzhiyun p = (u8 *)&alimb;
408*4882a593Smuzhiyun
409*4882a593Smuzhiyun for (x = 0; x < sizeof(alimb); x++) {
410*4882a593Smuzhiyun *p2++ = *p++;
411*4882a593Smuzhiyun if (!--buf_len) {
412*4882a593Smuzhiyun sg_miter_next(&miter);
413*4882a593Smuzhiyun buf_len = miter.length;
414*4882a593Smuzhiyun p2 = miter.addr;
415*4882a593Smuzhiyun }
416*4882a593Smuzhiyun }
417*4882a593Smuzhiyun }
418*4882a593Smuzhiyun
419*4882a593Smuzhiyun sg_miter_stop(&miter);
420*4882a593Smuzhiyun return 0;
421*4882a593Smuzhiyun }
422*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_write_to_sgl);
423*4882a593Smuzhiyun
424*4882a593Smuzhiyun /*
425*4882a593Smuzhiyun * mpi_read_raw_from_sgl() - Function allocates an MPI and populates it with
426*4882a593Smuzhiyun * data from the sgl
427*4882a593Smuzhiyun *
428*4882a593Smuzhiyun * This function works in the same way as the mpi_read_raw_data, but it
429*4882a593Smuzhiyun * takes an sgl instead of void * buffer. i.e. it allocates
430*4882a593Smuzhiyun * a new MPI and reads the content of the sgl to the MPI.
431*4882a593Smuzhiyun *
432*4882a593Smuzhiyun * @sgl: scatterlist to read from
433*4882a593Smuzhiyun * @nbytes: number of bytes to read
434*4882a593Smuzhiyun *
435*4882a593Smuzhiyun * Return: Pointer to a new MPI or NULL on error
436*4882a593Smuzhiyun */
mpi_read_raw_from_sgl(struct scatterlist * sgl,unsigned int nbytes)437*4882a593Smuzhiyun MPI mpi_read_raw_from_sgl(struct scatterlist *sgl, unsigned int nbytes)
438*4882a593Smuzhiyun {
439*4882a593Smuzhiyun struct sg_mapping_iter miter;
440*4882a593Smuzhiyun unsigned int nbits, nlimbs;
441*4882a593Smuzhiyun int x, j, z, lzeros, ents;
442*4882a593Smuzhiyun unsigned int len;
443*4882a593Smuzhiyun const u8 *buff;
444*4882a593Smuzhiyun mpi_limb_t a;
445*4882a593Smuzhiyun MPI val = NULL;
446*4882a593Smuzhiyun
447*4882a593Smuzhiyun ents = sg_nents_for_len(sgl, nbytes);
448*4882a593Smuzhiyun if (ents < 0)
449*4882a593Smuzhiyun return NULL;
450*4882a593Smuzhiyun
451*4882a593Smuzhiyun sg_miter_start(&miter, sgl, ents, SG_MITER_ATOMIC | SG_MITER_FROM_SG);
452*4882a593Smuzhiyun
453*4882a593Smuzhiyun lzeros = 0;
454*4882a593Smuzhiyun len = 0;
455*4882a593Smuzhiyun while (nbytes > 0) {
456*4882a593Smuzhiyun while (len && !*buff) {
457*4882a593Smuzhiyun lzeros++;
458*4882a593Smuzhiyun len--;
459*4882a593Smuzhiyun buff++;
460*4882a593Smuzhiyun }
461*4882a593Smuzhiyun
462*4882a593Smuzhiyun if (len && *buff)
463*4882a593Smuzhiyun break;
464*4882a593Smuzhiyun
465*4882a593Smuzhiyun sg_miter_next(&miter);
466*4882a593Smuzhiyun buff = miter.addr;
467*4882a593Smuzhiyun len = miter.length;
468*4882a593Smuzhiyun
469*4882a593Smuzhiyun nbytes -= lzeros;
470*4882a593Smuzhiyun lzeros = 0;
471*4882a593Smuzhiyun }
472*4882a593Smuzhiyun
473*4882a593Smuzhiyun miter.consumed = lzeros;
474*4882a593Smuzhiyun
475*4882a593Smuzhiyun nbytes -= lzeros;
476*4882a593Smuzhiyun nbits = nbytes * 8;
477*4882a593Smuzhiyun if (nbits > MAX_EXTERN_MPI_BITS) {
478*4882a593Smuzhiyun sg_miter_stop(&miter);
479*4882a593Smuzhiyun pr_info("MPI: mpi too large (%u bits)\n", nbits);
480*4882a593Smuzhiyun return NULL;
481*4882a593Smuzhiyun }
482*4882a593Smuzhiyun
483*4882a593Smuzhiyun if (nbytes > 0)
484*4882a593Smuzhiyun nbits -= count_leading_zeros(*buff) - (BITS_PER_LONG - 8);
485*4882a593Smuzhiyun
486*4882a593Smuzhiyun sg_miter_stop(&miter);
487*4882a593Smuzhiyun
488*4882a593Smuzhiyun nlimbs = DIV_ROUND_UP(nbytes, BYTES_PER_MPI_LIMB);
489*4882a593Smuzhiyun val = mpi_alloc(nlimbs);
490*4882a593Smuzhiyun if (!val)
491*4882a593Smuzhiyun return NULL;
492*4882a593Smuzhiyun
493*4882a593Smuzhiyun val->nbits = nbits;
494*4882a593Smuzhiyun val->sign = 0;
495*4882a593Smuzhiyun val->nlimbs = nlimbs;
496*4882a593Smuzhiyun
497*4882a593Smuzhiyun if (nbytes == 0)
498*4882a593Smuzhiyun return val;
499*4882a593Smuzhiyun
500*4882a593Smuzhiyun j = nlimbs - 1;
501*4882a593Smuzhiyun a = 0;
502*4882a593Smuzhiyun z = BYTES_PER_MPI_LIMB - nbytes % BYTES_PER_MPI_LIMB;
503*4882a593Smuzhiyun z %= BYTES_PER_MPI_LIMB;
504*4882a593Smuzhiyun
505*4882a593Smuzhiyun while (sg_miter_next(&miter)) {
506*4882a593Smuzhiyun buff = miter.addr;
507*4882a593Smuzhiyun len = miter.length;
508*4882a593Smuzhiyun
509*4882a593Smuzhiyun for (x = 0; x < len; x++) {
510*4882a593Smuzhiyun a <<= 8;
511*4882a593Smuzhiyun a |= *buff++;
512*4882a593Smuzhiyun if (((z + x + 1) % BYTES_PER_MPI_LIMB) == 0) {
513*4882a593Smuzhiyun val->d[j--] = a;
514*4882a593Smuzhiyun a = 0;
515*4882a593Smuzhiyun }
516*4882a593Smuzhiyun }
517*4882a593Smuzhiyun z += x;
518*4882a593Smuzhiyun }
519*4882a593Smuzhiyun
520*4882a593Smuzhiyun return val;
521*4882a593Smuzhiyun }
522*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_read_raw_from_sgl);
523*4882a593Smuzhiyun
524*4882a593Smuzhiyun /* Perform a two's complement operation on buffer P of size N bytes. */
twocompl(unsigned char * p,unsigned int n)525*4882a593Smuzhiyun static void twocompl(unsigned char *p, unsigned int n)
526*4882a593Smuzhiyun {
527*4882a593Smuzhiyun int i;
528*4882a593Smuzhiyun
529*4882a593Smuzhiyun for (i = n-1; i >= 0 && !p[i]; i--)
530*4882a593Smuzhiyun ;
531*4882a593Smuzhiyun if (i >= 0) {
532*4882a593Smuzhiyun if ((p[i] & 0x01))
533*4882a593Smuzhiyun p[i] = (((p[i] ^ 0xfe) | 0x01) & 0xff);
534*4882a593Smuzhiyun else if ((p[i] & 0x02))
535*4882a593Smuzhiyun p[i] = (((p[i] ^ 0xfc) | 0x02) & 0xfe);
536*4882a593Smuzhiyun else if ((p[i] & 0x04))
537*4882a593Smuzhiyun p[i] = (((p[i] ^ 0xf8) | 0x04) & 0xfc);
538*4882a593Smuzhiyun else if ((p[i] & 0x08))
539*4882a593Smuzhiyun p[i] = (((p[i] ^ 0xf0) | 0x08) & 0xf8);
540*4882a593Smuzhiyun else if ((p[i] & 0x10))
541*4882a593Smuzhiyun p[i] = (((p[i] ^ 0xe0) | 0x10) & 0xf0);
542*4882a593Smuzhiyun else if ((p[i] & 0x20))
543*4882a593Smuzhiyun p[i] = (((p[i] ^ 0xc0) | 0x20) & 0xe0);
544*4882a593Smuzhiyun else if ((p[i] & 0x40))
545*4882a593Smuzhiyun p[i] = (((p[i] ^ 0x80) | 0x40) & 0xc0);
546*4882a593Smuzhiyun else
547*4882a593Smuzhiyun p[i] = 0x80;
548*4882a593Smuzhiyun
549*4882a593Smuzhiyun for (i--; i >= 0; i--)
550*4882a593Smuzhiyun p[i] ^= 0xff;
551*4882a593Smuzhiyun }
552*4882a593Smuzhiyun }
553*4882a593Smuzhiyun
mpi_print(enum gcry_mpi_format format,unsigned char * buffer,size_t buflen,size_t * nwritten,MPI a)554*4882a593Smuzhiyun int mpi_print(enum gcry_mpi_format format, unsigned char *buffer,
555*4882a593Smuzhiyun size_t buflen, size_t *nwritten, MPI a)
556*4882a593Smuzhiyun {
557*4882a593Smuzhiyun unsigned int nbits = mpi_get_nbits(a);
558*4882a593Smuzhiyun size_t len;
559*4882a593Smuzhiyun size_t dummy_nwritten;
560*4882a593Smuzhiyun int negative;
561*4882a593Smuzhiyun
562*4882a593Smuzhiyun if (!nwritten)
563*4882a593Smuzhiyun nwritten = &dummy_nwritten;
564*4882a593Smuzhiyun
565*4882a593Smuzhiyun /* Libgcrypt does no always care to set clear the sign if the value
566*4882a593Smuzhiyun * is 0. For printing this is a bit of a surprise, in particular
567*4882a593Smuzhiyun * because if some of the formats don't support negative numbers but
568*4882a593Smuzhiyun * should be able to print a zero. Thus we need this extra test
569*4882a593Smuzhiyun * for a negative number.
570*4882a593Smuzhiyun */
571*4882a593Smuzhiyun if (a->sign && mpi_cmp_ui(a, 0))
572*4882a593Smuzhiyun negative = 1;
573*4882a593Smuzhiyun else
574*4882a593Smuzhiyun negative = 0;
575*4882a593Smuzhiyun
576*4882a593Smuzhiyun len = buflen;
577*4882a593Smuzhiyun *nwritten = 0;
578*4882a593Smuzhiyun if (format == GCRYMPI_FMT_STD) {
579*4882a593Smuzhiyun unsigned char *tmp;
580*4882a593Smuzhiyun int extra = 0;
581*4882a593Smuzhiyun unsigned int n;
582*4882a593Smuzhiyun
583*4882a593Smuzhiyun tmp = mpi_get_buffer(a, &n, NULL);
584*4882a593Smuzhiyun if (!tmp)
585*4882a593Smuzhiyun return -EINVAL;
586*4882a593Smuzhiyun
587*4882a593Smuzhiyun if (negative) {
588*4882a593Smuzhiyun twocompl(tmp, n);
589*4882a593Smuzhiyun if (!(*tmp & 0x80)) {
590*4882a593Smuzhiyun /* Need to extend the sign. */
591*4882a593Smuzhiyun n++;
592*4882a593Smuzhiyun extra = 2;
593*4882a593Smuzhiyun }
594*4882a593Smuzhiyun } else if (n && (*tmp & 0x80)) {
595*4882a593Smuzhiyun /* Positive but the high bit of the returned buffer is set.
596*4882a593Smuzhiyun * Thus we need to print an extra leading 0x00 so that the
597*4882a593Smuzhiyun * output is interpreted as a positive number.
598*4882a593Smuzhiyun */
599*4882a593Smuzhiyun n++;
600*4882a593Smuzhiyun extra = 1;
601*4882a593Smuzhiyun }
602*4882a593Smuzhiyun
603*4882a593Smuzhiyun if (buffer && n > len) {
604*4882a593Smuzhiyun /* The provided buffer is too short. */
605*4882a593Smuzhiyun kfree(tmp);
606*4882a593Smuzhiyun return -E2BIG;
607*4882a593Smuzhiyun }
608*4882a593Smuzhiyun if (buffer) {
609*4882a593Smuzhiyun unsigned char *s = buffer;
610*4882a593Smuzhiyun
611*4882a593Smuzhiyun if (extra == 1)
612*4882a593Smuzhiyun *s++ = 0;
613*4882a593Smuzhiyun else if (extra)
614*4882a593Smuzhiyun *s++ = 0xff;
615*4882a593Smuzhiyun memcpy(s, tmp, n-!!extra);
616*4882a593Smuzhiyun }
617*4882a593Smuzhiyun kfree(tmp);
618*4882a593Smuzhiyun *nwritten = n;
619*4882a593Smuzhiyun return 0;
620*4882a593Smuzhiyun } else if (format == GCRYMPI_FMT_USG) {
621*4882a593Smuzhiyun unsigned int n = (nbits + 7)/8;
622*4882a593Smuzhiyun
623*4882a593Smuzhiyun /* Note: We ignore the sign for this format. */
624*4882a593Smuzhiyun /* FIXME: for performance reasons we should put this into
625*4882a593Smuzhiyun * mpi_aprint because we can then use the buffer directly.
626*4882a593Smuzhiyun */
627*4882a593Smuzhiyun
628*4882a593Smuzhiyun if (buffer && n > len)
629*4882a593Smuzhiyun return -E2BIG;
630*4882a593Smuzhiyun if (buffer) {
631*4882a593Smuzhiyun unsigned char *tmp;
632*4882a593Smuzhiyun
633*4882a593Smuzhiyun tmp = mpi_get_buffer(a, &n, NULL);
634*4882a593Smuzhiyun if (!tmp)
635*4882a593Smuzhiyun return -EINVAL;
636*4882a593Smuzhiyun memcpy(buffer, tmp, n);
637*4882a593Smuzhiyun kfree(tmp);
638*4882a593Smuzhiyun }
639*4882a593Smuzhiyun *nwritten = n;
640*4882a593Smuzhiyun return 0;
641*4882a593Smuzhiyun } else if (format == GCRYMPI_FMT_PGP) {
642*4882a593Smuzhiyun unsigned int n = (nbits + 7)/8;
643*4882a593Smuzhiyun
644*4882a593Smuzhiyun /* The PGP format can only handle unsigned integers. */
645*4882a593Smuzhiyun if (negative)
646*4882a593Smuzhiyun return -EINVAL;
647*4882a593Smuzhiyun
648*4882a593Smuzhiyun if (buffer && n+2 > len)
649*4882a593Smuzhiyun return -E2BIG;
650*4882a593Smuzhiyun
651*4882a593Smuzhiyun if (buffer) {
652*4882a593Smuzhiyun unsigned char *tmp;
653*4882a593Smuzhiyun unsigned char *s = buffer;
654*4882a593Smuzhiyun
655*4882a593Smuzhiyun s[0] = nbits >> 8;
656*4882a593Smuzhiyun s[1] = nbits;
657*4882a593Smuzhiyun
658*4882a593Smuzhiyun tmp = mpi_get_buffer(a, &n, NULL);
659*4882a593Smuzhiyun if (!tmp)
660*4882a593Smuzhiyun return -EINVAL;
661*4882a593Smuzhiyun memcpy(s+2, tmp, n);
662*4882a593Smuzhiyun kfree(tmp);
663*4882a593Smuzhiyun }
664*4882a593Smuzhiyun *nwritten = n+2;
665*4882a593Smuzhiyun return 0;
666*4882a593Smuzhiyun } else if (format == GCRYMPI_FMT_SSH) {
667*4882a593Smuzhiyun unsigned char *tmp;
668*4882a593Smuzhiyun int extra = 0;
669*4882a593Smuzhiyun unsigned int n;
670*4882a593Smuzhiyun
671*4882a593Smuzhiyun tmp = mpi_get_buffer(a, &n, NULL);
672*4882a593Smuzhiyun if (!tmp)
673*4882a593Smuzhiyun return -EINVAL;
674*4882a593Smuzhiyun
675*4882a593Smuzhiyun if (negative) {
676*4882a593Smuzhiyun twocompl(tmp, n);
677*4882a593Smuzhiyun if (!(*tmp & 0x80)) {
678*4882a593Smuzhiyun /* Need to extend the sign. */
679*4882a593Smuzhiyun n++;
680*4882a593Smuzhiyun extra = 2;
681*4882a593Smuzhiyun }
682*4882a593Smuzhiyun } else if (n && (*tmp & 0x80)) {
683*4882a593Smuzhiyun n++;
684*4882a593Smuzhiyun extra = 1;
685*4882a593Smuzhiyun }
686*4882a593Smuzhiyun
687*4882a593Smuzhiyun if (buffer && n+4 > len) {
688*4882a593Smuzhiyun kfree(tmp);
689*4882a593Smuzhiyun return -E2BIG;
690*4882a593Smuzhiyun }
691*4882a593Smuzhiyun
692*4882a593Smuzhiyun if (buffer) {
693*4882a593Smuzhiyun unsigned char *s = buffer;
694*4882a593Smuzhiyun
695*4882a593Smuzhiyun *s++ = n >> 24;
696*4882a593Smuzhiyun *s++ = n >> 16;
697*4882a593Smuzhiyun *s++ = n >> 8;
698*4882a593Smuzhiyun *s++ = n;
699*4882a593Smuzhiyun if (extra == 1)
700*4882a593Smuzhiyun *s++ = 0;
701*4882a593Smuzhiyun else if (extra)
702*4882a593Smuzhiyun *s++ = 0xff;
703*4882a593Smuzhiyun memcpy(s, tmp, n-!!extra);
704*4882a593Smuzhiyun }
705*4882a593Smuzhiyun kfree(tmp);
706*4882a593Smuzhiyun *nwritten = 4+n;
707*4882a593Smuzhiyun return 0;
708*4882a593Smuzhiyun } else if (format == GCRYMPI_FMT_HEX) {
709*4882a593Smuzhiyun unsigned char *tmp;
710*4882a593Smuzhiyun int i;
711*4882a593Smuzhiyun int extra = 0;
712*4882a593Smuzhiyun unsigned int n = 0;
713*4882a593Smuzhiyun
714*4882a593Smuzhiyun tmp = mpi_get_buffer(a, &n, NULL);
715*4882a593Smuzhiyun if (!tmp)
716*4882a593Smuzhiyun return -EINVAL;
717*4882a593Smuzhiyun if (!n || (*tmp & 0x80))
718*4882a593Smuzhiyun extra = 2;
719*4882a593Smuzhiyun
720*4882a593Smuzhiyun if (buffer && 2*n + extra + negative + 1 > len) {
721*4882a593Smuzhiyun kfree(tmp);
722*4882a593Smuzhiyun return -E2BIG;
723*4882a593Smuzhiyun }
724*4882a593Smuzhiyun if (buffer) {
725*4882a593Smuzhiyun unsigned char *s = buffer;
726*4882a593Smuzhiyun
727*4882a593Smuzhiyun if (negative)
728*4882a593Smuzhiyun *s++ = '-';
729*4882a593Smuzhiyun if (extra) {
730*4882a593Smuzhiyun *s++ = '0';
731*4882a593Smuzhiyun *s++ = '0';
732*4882a593Smuzhiyun }
733*4882a593Smuzhiyun
734*4882a593Smuzhiyun for (i = 0; i < n; i++) {
735*4882a593Smuzhiyun unsigned int c = tmp[i];
736*4882a593Smuzhiyun
737*4882a593Smuzhiyun *s++ = (c >> 4) < 10 ? '0'+(c>>4) : 'A'+(c>>4)-10;
738*4882a593Smuzhiyun c &= 15;
739*4882a593Smuzhiyun *s++ = c < 10 ? '0'+c : 'A'+c-10;
740*4882a593Smuzhiyun }
741*4882a593Smuzhiyun *s++ = 0;
742*4882a593Smuzhiyun *nwritten = s - buffer;
743*4882a593Smuzhiyun } else {
744*4882a593Smuzhiyun *nwritten = 2*n + extra + negative + 1;
745*4882a593Smuzhiyun }
746*4882a593Smuzhiyun kfree(tmp);
747*4882a593Smuzhiyun return 0;
748*4882a593Smuzhiyun } else
749*4882a593Smuzhiyun return -EINVAL;
750*4882a593Smuzhiyun }
751*4882a593Smuzhiyun EXPORT_SYMBOL_GPL(mpi_print);
752