1*4882a593Smuzhiyun // SPDX-License-Identifier: GPL-2.0
2*4882a593Smuzhiyun /*
3*4882a593Smuzhiyun * Copyright (c) 2019 Fuzhou Rockchip Electronics Co., Ltd
4*4882a593Smuzhiyun */
5*4882a593Smuzhiyun
6*4882a593Smuzhiyun #include <crypto.h>
7*4882a593Smuzhiyun
8*4882a593Smuzhiyun static const u8 null_hash_sha1_value[] = {
9*4882a593Smuzhiyun 0xda, 0x39, 0xa3, 0xee, 0x5e, 0x6b, 0x4b, 0x0d,
10*4882a593Smuzhiyun 0x32, 0x55, 0xbf, 0xef, 0x95, 0x60, 0x18, 0x90,
11*4882a593Smuzhiyun 0xaf, 0xd8, 0x07, 0x09
12*4882a593Smuzhiyun };
13*4882a593Smuzhiyun
14*4882a593Smuzhiyun static const u8 null_hash_md5_value[] = {
15*4882a593Smuzhiyun 0xd4, 0x1d, 0x8c, 0xd9, 0x8f, 0x00, 0xb2, 0x04,
16*4882a593Smuzhiyun 0xe9, 0x80, 0x09, 0x98, 0xec, 0xf8, 0x42, 0x7e
17*4882a593Smuzhiyun };
18*4882a593Smuzhiyun
19*4882a593Smuzhiyun static const u8 null_hash_sha256_value[] = {
20*4882a593Smuzhiyun 0xe3, 0xb0, 0xc4, 0x42, 0x98, 0xfc, 0x1c, 0x14,
21*4882a593Smuzhiyun 0x9a, 0xfb, 0xf4, 0xc8, 0x99, 0x6f, 0xb9, 0x24,
22*4882a593Smuzhiyun 0x27, 0xae, 0x41, 0xe4, 0x64, 0x9b, 0x93, 0x4c,
23*4882a593Smuzhiyun 0xa4, 0x95, 0x99, 0x1b, 0x78, 0x52, 0xb8, 0x55
24*4882a593Smuzhiyun };
25*4882a593Smuzhiyun
26*4882a593Smuzhiyun static const u8 null_hash_sha512_value[] = {
27*4882a593Smuzhiyun 0xcf, 0x83, 0xe1, 0x35, 0x7e, 0xef, 0xb8, 0xbd,
28*4882a593Smuzhiyun 0xf1, 0x54, 0x28, 0x50, 0xd6, 0x6d, 0x80, 0x07,
29*4882a593Smuzhiyun 0xd6, 0x20, 0xe4, 0x05, 0x0b, 0x57, 0x15, 0xdc,
30*4882a593Smuzhiyun 0x83, 0xf4, 0xa9, 0x21, 0xd3, 0x6c, 0xe9, 0xce,
31*4882a593Smuzhiyun 0x47, 0xd0, 0xd1, 0x3c, 0x5d, 0x85, 0xf2, 0xb0,
32*4882a593Smuzhiyun 0xff, 0x83, 0x18, 0xd2, 0x87, 0x7e, 0xec, 0x2f,
33*4882a593Smuzhiyun 0x63, 0xb9, 0x31, 0xbd, 0x47, 0x41, 0x7a, 0x81,
34*4882a593Smuzhiyun 0xa5, 0x38, 0x32, 0x7a, 0xf9, 0x27, 0xda, 0x3e
35*4882a593Smuzhiyun };
36*4882a593Smuzhiyun
37*4882a593Smuzhiyun const static u8 null_hash_sm3_value[] = {
38*4882a593Smuzhiyun 0x1a, 0xb2, 0x1d, 0x83, 0x55, 0xcf, 0xa1, 0x7f,
39*4882a593Smuzhiyun 0x8e, 0x61, 0x19, 0x48, 0x31, 0xe8, 0x1a, 0x8f,
40*4882a593Smuzhiyun 0x22, 0xbe, 0xc8, 0xc7, 0x28, 0xfe, 0xfb, 0x74,
41*4882a593Smuzhiyun 0x7e, 0xd0, 0x35, 0xeb, 0x50, 0x82, 0xaa, 0x2b
42*4882a593Smuzhiyun };
43*4882a593Smuzhiyun
crypto_algo_nbits(u32 algo)44*4882a593Smuzhiyun u32 crypto_algo_nbits(u32 algo)
45*4882a593Smuzhiyun {
46*4882a593Smuzhiyun switch (algo) {
47*4882a593Smuzhiyun case CRYPTO_MD5:
48*4882a593Smuzhiyun case CRYPTO_HMAC_MD5:
49*4882a593Smuzhiyun return 128;
50*4882a593Smuzhiyun case CRYPTO_SHA1:
51*4882a593Smuzhiyun case CRYPTO_HMAC_SHA1:
52*4882a593Smuzhiyun return 160;
53*4882a593Smuzhiyun case CRYPTO_SHA256:
54*4882a593Smuzhiyun case CRYPTO_HMAC_SHA256:
55*4882a593Smuzhiyun return 256;
56*4882a593Smuzhiyun case CRYPTO_SHA512:
57*4882a593Smuzhiyun case CRYPTO_HMAC_SHA512:
58*4882a593Smuzhiyun return 512;
59*4882a593Smuzhiyun case CRYPTO_SM3:
60*4882a593Smuzhiyun case CRYPTO_HMAC_SM3:
61*4882a593Smuzhiyun return 256;
62*4882a593Smuzhiyun case CRYPTO_RSA512:
63*4882a593Smuzhiyun return 512;
64*4882a593Smuzhiyun case CRYPTO_RSA1024:
65*4882a593Smuzhiyun return 1024;
66*4882a593Smuzhiyun case CRYPTO_RSA2048:
67*4882a593Smuzhiyun return 2048;
68*4882a593Smuzhiyun case CRYPTO_RSA3072:
69*4882a593Smuzhiyun return 3072;
70*4882a593Smuzhiyun case CRYPTO_RSA4096:
71*4882a593Smuzhiyun return 4096;
72*4882a593Smuzhiyun }
73*4882a593Smuzhiyun
74*4882a593Smuzhiyun printf("Unknown crypto algorithm: 0x%x\n", algo);
75*4882a593Smuzhiyun
76*4882a593Smuzhiyun return 0;
77*4882a593Smuzhiyun }
78*4882a593Smuzhiyun
crypto_get_device(u32 capability)79*4882a593Smuzhiyun struct udevice *crypto_get_device(u32 capability)
80*4882a593Smuzhiyun {
81*4882a593Smuzhiyun const struct dm_crypto_ops *ops;
82*4882a593Smuzhiyun struct udevice *dev;
83*4882a593Smuzhiyun struct uclass *uc;
84*4882a593Smuzhiyun int ret;
85*4882a593Smuzhiyun u32 cap;
86*4882a593Smuzhiyun
87*4882a593Smuzhiyun ret = uclass_get(UCLASS_CRYPTO, &uc);
88*4882a593Smuzhiyun if (ret)
89*4882a593Smuzhiyun return NULL;
90*4882a593Smuzhiyun
91*4882a593Smuzhiyun for (uclass_first_device(UCLASS_CRYPTO, &dev);
92*4882a593Smuzhiyun dev;
93*4882a593Smuzhiyun uclass_next_device(&dev)) {
94*4882a593Smuzhiyun ops = device_get_ops(dev);
95*4882a593Smuzhiyun if (!ops || !ops->capability)
96*4882a593Smuzhiyun continue;
97*4882a593Smuzhiyun
98*4882a593Smuzhiyun cap = ops->capability(dev);
99*4882a593Smuzhiyun if ((cap & capability) == capability)
100*4882a593Smuzhiyun return dev;
101*4882a593Smuzhiyun }
102*4882a593Smuzhiyun
103*4882a593Smuzhiyun return NULL;
104*4882a593Smuzhiyun }
105*4882a593Smuzhiyun
crypto_sha_init(struct udevice * dev,sha_context * ctx)106*4882a593Smuzhiyun int crypto_sha_init(struct udevice *dev, sha_context *ctx)
107*4882a593Smuzhiyun {
108*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
109*4882a593Smuzhiyun
110*4882a593Smuzhiyun if (ctx && !ctx->length)
111*4882a593Smuzhiyun return 0;
112*4882a593Smuzhiyun
113*4882a593Smuzhiyun if (!ops || !ops->sha_init)
114*4882a593Smuzhiyun return -ENOSYS;
115*4882a593Smuzhiyun
116*4882a593Smuzhiyun return ops->sha_init(dev, ctx);
117*4882a593Smuzhiyun }
118*4882a593Smuzhiyun
crypto_sha_update(struct udevice * dev,u32 * input,u32 len)119*4882a593Smuzhiyun int crypto_sha_update(struct udevice *dev, u32 *input, u32 len)
120*4882a593Smuzhiyun {
121*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
122*4882a593Smuzhiyun
123*4882a593Smuzhiyun if (!len)
124*4882a593Smuzhiyun return 0;
125*4882a593Smuzhiyun
126*4882a593Smuzhiyun if (!ops || !ops->sha_update)
127*4882a593Smuzhiyun return -ENOSYS;
128*4882a593Smuzhiyun
129*4882a593Smuzhiyun return ops->sha_update(dev, input, len);
130*4882a593Smuzhiyun }
131*4882a593Smuzhiyun
crypto_sha_final(struct udevice * dev,sha_context * ctx,u8 * output)132*4882a593Smuzhiyun int crypto_sha_final(struct udevice *dev, sha_context *ctx, u8 *output)
133*4882a593Smuzhiyun {
134*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
135*4882a593Smuzhiyun const u8 *null_hash = NULL;
136*4882a593Smuzhiyun u32 hash_size = 0;
137*4882a593Smuzhiyun
138*4882a593Smuzhiyun if (ctx && !ctx->length && output) {
139*4882a593Smuzhiyun switch (ctx->algo) {
140*4882a593Smuzhiyun case CRYPTO_MD5:
141*4882a593Smuzhiyun null_hash = null_hash_md5_value;
142*4882a593Smuzhiyun hash_size = sizeof(null_hash_md5_value);
143*4882a593Smuzhiyun break;
144*4882a593Smuzhiyun case CRYPTO_SHA1:
145*4882a593Smuzhiyun null_hash = null_hash_sha1_value;
146*4882a593Smuzhiyun hash_size = sizeof(null_hash_sha1_value);
147*4882a593Smuzhiyun break;
148*4882a593Smuzhiyun case CRYPTO_SHA256:
149*4882a593Smuzhiyun null_hash = null_hash_sha256_value;
150*4882a593Smuzhiyun hash_size = sizeof(null_hash_sha256_value);
151*4882a593Smuzhiyun break;
152*4882a593Smuzhiyun case CRYPTO_SHA512:
153*4882a593Smuzhiyun null_hash = null_hash_sha512_value;
154*4882a593Smuzhiyun hash_size = sizeof(null_hash_sha512_value);
155*4882a593Smuzhiyun break;
156*4882a593Smuzhiyun case CRYPTO_SM3:
157*4882a593Smuzhiyun null_hash = null_hash_sm3_value;
158*4882a593Smuzhiyun hash_size = sizeof(null_hash_sm3_value);
159*4882a593Smuzhiyun break;
160*4882a593Smuzhiyun default:
161*4882a593Smuzhiyun return -EINVAL;
162*4882a593Smuzhiyun }
163*4882a593Smuzhiyun
164*4882a593Smuzhiyun memcpy(output, null_hash, hash_size);
165*4882a593Smuzhiyun
166*4882a593Smuzhiyun return 0;
167*4882a593Smuzhiyun }
168*4882a593Smuzhiyun
169*4882a593Smuzhiyun if (!ops || !ops->sha_final)
170*4882a593Smuzhiyun return -ENOSYS;
171*4882a593Smuzhiyun
172*4882a593Smuzhiyun return ops->sha_final(dev, ctx, output);
173*4882a593Smuzhiyun }
174*4882a593Smuzhiyun
crypto_hmac_init(struct udevice * dev,sha_context * ctx,u8 * key,u32 key_len)175*4882a593Smuzhiyun int crypto_hmac_init(struct udevice *dev, sha_context *ctx,
176*4882a593Smuzhiyun u8 *key, u32 key_len)
177*4882a593Smuzhiyun {
178*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
179*4882a593Smuzhiyun
180*4882a593Smuzhiyun if (ctx && !ctx->length)
181*4882a593Smuzhiyun return -EINVAL;
182*4882a593Smuzhiyun
183*4882a593Smuzhiyun if (!ops || !ops->hmac_init)
184*4882a593Smuzhiyun return -ENOSYS;
185*4882a593Smuzhiyun
186*4882a593Smuzhiyun return ops->hmac_init(dev, ctx, key, key_len);
187*4882a593Smuzhiyun }
188*4882a593Smuzhiyun
crypto_hmac_update(struct udevice * dev,u32 * input,u32 len)189*4882a593Smuzhiyun int crypto_hmac_update(struct udevice *dev, u32 *input, u32 len)
190*4882a593Smuzhiyun {
191*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
192*4882a593Smuzhiyun
193*4882a593Smuzhiyun if (!len)
194*4882a593Smuzhiyun return 0;
195*4882a593Smuzhiyun
196*4882a593Smuzhiyun if (!ops || !ops->hmac_update)
197*4882a593Smuzhiyun return -ENOSYS;
198*4882a593Smuzhiyun
199*4882a593Smuzhiyun return ops->hmac_update(dev, input, len);
200*4882a593Smuzhiyun }
201*4882a593Smuzhiyun
crypto_hmac_final(struct udevice * dev,sha_context * ctx,u8 * output)202*4882a593Smuzhiyun int crypto_hmac_final(struct udevice *dev, sha_context *ctx, u8 *output)
203*4882a593Smuzhiyun {
204*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
205*4882a593Smuzhiyun
206*4882a593Smuzhiyun if (!ops || !ops->hmac_final)
207*4882a593Smuzhiyun return -ENOSYS;
208*4882a593Smuzhiyun
209*4882a593Smuzhiyun return ops->hmac_final(dev, ctx, output);
210*4882a593Smuzhiyun }
211*4882a593Smuzhiyun
crypto_sha_csum(struct udevice * dev,sha_context * ctx,char * input,u32 input_len,u8 * output)212*4882a593Smuzhiyun int crypto_sha_csum(struct udevice *dev, sha_context *ctx,
213*4882a593Smuzhiyun char *input, u32 input_len, u8 *output)
214*4882a593Smuzhiyun {
215*4882a593Smuzhiyun int ret;
216*4882a593Smuzhiyun
217*4882a593Smuzhiyun ret = crypto_sha_init(dev, ctx);
218*4882a593Smuzhiyun if (ret)
219*4882a593Smuzhiyun return ret;
220*4882a593Smuzhiyun
221*4882a593Smuzhiyun ret = crypto_sha_update(dev, (u32 *)input, input_len);
222*4882a593Smuzhiyun if (ret)
223*4882a593Smuzhiyun return ret;
224*4882a593Smuzhiyun
225*4882a593Smuzhiyun ret = crypto_sha_final(dev, ctx, output);
226*4882a593Smuzhiyun
227*4882a593Smuzhiyun return ret;
228*4882a593Smuzhiyun }
229*4882a593Smuzhiyun
crypto_sha_regions_csum(struct udevice * dev,sha_context * ctx,const struct image_region region[],int region_count,u8 * output)230*4882a593Smuzhiyun int crypto_sha_regions_csum(struct udevice *dev, sha_context *ctx,
231*4882a593Smuzhiyun const struct image_region region[],
232*4882a593Smuzhiyun int region_count, u8 *output)
233*4882a593Smuzhiyun {
234*4882a593Smuzhiyun int i, ret;
235*4882a593Smuzhiyun
236*4882a593Smuzhiyun ctx->length = 0;
237*4882a593Smuzhiyun for (i = 0; i < region_count; i++)
238*4882a593Smuzhiyun ctx->length += region[i].size;
239*4882a593Smuzhiyun
240*4882a593Smuzhiyun ret = crypto_sha_init(dev, ctx);
241*4882a593Smuzhiyun if (ret)
242*4882a593Smuzhiyun return ret;
243*4882a593Smuzhiyun
244*4882a593Smuzhiyun for (i = 0; i < region_count; i++) {
245*4882a593Smuzhiyun ret = crypto_sha_update(dev, (void *)region[i].data,
246*4882a593Smuzhiyun region[i].size);
247*4882a593Smuzhiyun if (ret)
248*4882a593Smuzhiyun return ret;
249*4882a593Smuzhiyun }
250*4882a593Smuzhiyun
251*4882a593Smuzhiyun return crypto_sha_final(dev, ctx, output);
252*4882a593Smuzhiyun }
253*4882a593Smuzhiyun
crypto_rsa_verify(struct udevice * dev,rsa_key * ctx,u8 * sign,u8 * output)254*4882a593Smuzhiyun int crypto_rsa_verify(struct udevice *dev, rsa_key *ctx, u8 *sign, u8 *output)
255*4882a593Smuzhiyun {
256*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
257*4882a593Smuzhiyun
258*4882a593Smuzhiyun if (!ops || !ops->rsa_verify)
259*4882a593Smuzhiyun return -ENOSYS;
260*4882a593Smuzhiyun
261*4882a593Smuzhiyun if (!ctx || !ctx->n || !ctx->e || !sign || !output)
262*4882a593Smuzhiyun return -EINVAL;
263*4882a593Smuzhiyun
264*4882a593Smuzhiyun return ops->rsa_verify(dev, ctx, sign, output);
265*4882a593Smuzhiyun }
266*4882a593Smuzhiyun
crypto_cipher(struct udevice * dev,cipher_context * ctx,const u8 * in,u8 * out,u32 len,bool enc)267*4882a593Smuzhiyun int crypto_cipher(struct udevice *dev, cipher_context *ctx,
268*4882a593Smuzhiyun const u8 *in, u8 *out, u32 len, bool enc)
269*4882a593Smuzhiyun {
270*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
271*4882a593Smuzhiyun
272*4882a593Smuzhiyun if (!ops || !ops->cipher_crypt)
273*4882a593Smuzhiyun return -ENOSYS;
274*4882a593Smuzhiyun
275*4882a593Smuzhiyun return ops->cipher_crypt(dev, ctx, in, out, len, enc);
276*4882a593Smuzhiyun }
277*4882a593Smuzhiyun
crypto_mac(struct udevice * dev,cipher_context * ctx,const u8 * in,u32 len,u8 * tag)278*4882a593Smuzhiyun int crypto_mac(struct udevice *dev, cipher_context *ctx,
279*4882a593Smuzhiyun const u8 *in, u32 len, u8 *tag)
280*4882a593Smuzhiyun {
281*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
282*4882a593Smuzhiyun
283*4882a593Smuzhiyun if (!ops || !ops->cipher_mac)
284*4882a593Smuzhiyun return -ENOSYS;
285*4882a593Smuzhiyun
286*4882a593Smuzhiyun return ops->cipher_mac(dev, ctx, in, len, tag);
287*4882a593Smuzhiyun }
288*4882a593Smuzhiyun
crypto_ae(struct udevice * dev,cipher_context * ctx,const u8 * in,u32 len,const u8 * aad,u32 aad_len,u8 * out,u8 * tag)289*4882a593Smuzhiyun int crypto_ae(struct udevice *dev, cipher_context *ctx,
290*4882a593Smuzhiyun const u8 *in, u32 len, const u8 *aad, u32 aad_len,
291*4882a593Smuzhiyun u8 *out, u8 *tag)
292*4882a593Smuzhiyun {
293*4882a593Smuzhiyun const struct dm_crypto_ops *ops = device_get_ops(dev);
294*4882a593Smuzhiyun
295*4882a593Smuzhiyun if (!ops || !ops->cipher_ae)
296*4882a593Smuzhiyun return -ENOSYS;
297*4882a593Smuzhiyun
298*4882a593Smuzhiyun return ops->cipher_ae(dev, ctx, in, len, aad, aad_len, out, tag);
299*4882a593Smuzhiyun }
300*4882a593Smuzhiyun
301*4882a593Smuzhiyun UCLASS_DRIVER(crypto) = {
302*4882a593Smuzhiyun .id = UCLASS_CRYPTO,
303*4882a593Smuzhiyun .name = "crypto",
304*4882a593Smuzhiyun };
305