[linux.git] / crypto / sha1.c

/*
 * Cryptographic API.
 *
 * SHA1 Secure Hash Algorithm.
 *
 * Derived from cryptoapi implementation, adapted for in-place
 * scatterlist interface.
 *
 * Copyright (c) Alan Smithee.
 * Copyright (c) Andrew McDonald <[email protected]>
 * Copyright (c) Jean-Francois Dive <[email protected]>
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the Free
 * Software Foundation; either version 2 of the License, or (at your option)
 * any later version.
 *
 */
#include <linux/init.h>
#include <linux/module.h>
#include <linux/mm.h>
#include <linux/crypto.h>
#include <linux/cryptohash.h>
#include <linux/types.h>
#include <asm/scatterlist.h>
#include <asm/byteorder.h>

#define SHA1_DIGEST_SIZE	20
#define SHA1_HMAC_BLOCK_SIZE	64

struct sha1_ctx {
        u64 count;
        u32 state[5];
        u8 buffer[64];
};

static void sha1_init(struct crypto_tfm *tfm)
{
	struct sha1_ctx *sctx = crypto_tfm_ctx(tfm);
	static const struct sha1_ctx initstate = {
	  0,
	  { 0x67452301, 0xEFCDAB89, 0x98BADCFE, 0x10325476, 0xC3D2E1F0 },
	  { 0, }
	};

	*sctx = initstate;
}

static void sha1_update(struct crypto_tfm *tfm, const u8 *data,
			unsigned int len)
{
	struct sha1_ctx *sctx = crypto_tfm_ctx(tfm);
	unsigned int partial, done;
	const u8 *src;

	partial = sctx->count & 0x3f;
	sctx->count += len;
	done = 0;
	src = data;

	if ((partial + len) > 63) {
		u32 temp[SHA_WORKSPACE_WORDS];

		if (partial) {
			done = -partial;
			memcpy(sctx->buffer + partial, data, done + 64);
			src = sctx->buffer;
		}

		do {
			sha_transform(sctx->state, src, temp);
			done += 64;
			src = data + done;
		} while (done + 63 < len);

		memset(temp, 0, sizeof(temp));
		partial = 0;
	}
	memcpy(sctx->buffer + partial, src, len - done);
}


/* Add padding and return the message digest. */
static void sha1_final(struct crypto_tfm *tfm, u8 *out)
{
	struct sha1_ctx *sctx = crypto_tfm_ctx(tfm);
	__be32 *dst = (__be32 *)out;
	u32 i, index, padlen;
	__be64 bits;
	static const u8 padding[64] = { 0x80, };

	bits = cpu_to_be64(sctx->count << 3);

	/* Pad out to 56 mod 64 */
	index = sctx->count & 0x3f;
	padlen = (index < 56) ? (56 - index) : ((64+56) - index);
	sha1_update(tfm, padding, padlen);

	/* Append length */
	sha1_update(tfm, (const u8 *)&bits, sizeof(bits));

	/* Store state in digest */
	for (i = 0; i < 5; i++)
		dst[i] = cpu_to_be32(sctx->state[i]);

	/* Wipe context */
	memset(sctx, 0, sizeof *sctx);
}

static struct crypto_alg alg = {
	.cra_name	=	"sha1",
	.cra_driver_name=	"sha1-generic",
	.cra_flags	=	CRYPTO_ALG_TYPE_DIGEST,
	.cra_blocksize	=	SHA1_HMAC_BLOCK_SIZE,
	.cra_ctxsize	=	sizeof(struct sha1_ctx),
	.cra_module	=	THIS_MODULE,
	.cra_alignmask	=	3,
	.cra_list       =       LIST_HEAD_INIT(alg.cra_list),
	.cra_u		=	{ .digest = {
	.dia_digestsize	=	SHA1_DIGEST_SIZE,
	.dia_init   	= 	sha1_init,
	.dia_update 	=	sha1_update,
	.dia_final  	=	sha1_final } }
};

static int __init init(void)
{
	return crypto_register_alg(&alg);
}

static void __exit fini(void)
{
	crypto_unregister_alg(&alg);
}

module_init(init);
module_exit(fini);

MODULE_LICENSE("GPL");
MODULE_DESCRIPTION("SHA1 Secure Hash Algorithm");

MODULE_ALIAS("sha1-generic");
Commit	Line	Data
1da177e4 LT	1	/*
	2	* Cryptographic API.
	3	*
	4	* SHA1 Secure Hash Algorithm.
	5	*
	6	* Derived from cryptoapi implementation, adapted for in-place
	7	* scatterlist interface.
	8	*
	9	* Copyright (c) Alan Smithee.
	10	* Copyright (c) Andrew McDonald <[email protected]>
	11	* Copyright (c) Jean-Francois Dive <[email protected]>
	12	*
	13	* This program is free software; you can redistribute it and/or modify it
	14	* under the terms of the GNU General Public License as published by the Free
	15	* Software Foundation; either version 2 of the License, or (at your option)
	16	* any later version.
	17	*
	18	*/
	19	#include <linux/init.h>
	20	#include <linux/module.h>
	21	#include <linux/mm.h>
	22	#include <linux/crypto.h>
	23	#include <linux/cryptohash.h>
06ace7a9	24	#include <linux/types.h>
1da177e4 LT	25	#include <asm/scatterlist.h>
	26	#include <asm/byteorder.h>
	27
	28	#define SHA1_DIGEST_SIZE 20
	29	#define SHA1_HMAC_BLOCK_SIZE 64
	30
	31	struct sha1_ctx {
	32	u64 count;
	33	u32 state[5];
	34	u8 buffer[64];
	35	};
	36
6c2bb98b	37	static void sha1_init(struct crypto_tfm *tfm)
1da177e4	38	{
6c2bb98b	39	struct sha1_ctx *sctx = crypto_tfm_ctx(tfm);
1da177e4 LT	40	static const struct sha1_ctx initstate = {
	41	0,
	42	{ 0x67452301, 0xEFCDAB89, 0x98BADCFE, 0x10325476, 0xC3D2E1F0 },
	43	{ 0, }
	44	};
	45
	46	*sctx = initstate;
	47	}
	48
6c2bb98b HX	49	static void sha1_update(struct crypto_tfm tfm, const u8 data,
6c2bb98b HX	50	unsigned int len)
1da177e4	51	{
6c2bb98b	52	struct sha1_ctx *sctx = crypto_tfm_ctx(tfm);
9d70a6c8	53	unsigned int partial, done;
cfa8d17c	54	const u8 *src;
1da177e4	55
fa9b98fd NP	56	partial = sctx->count & 0x3f;
fa9b98fd NP	57	sctx->count += len;
9d70a6c8	58	done = 0;
cfa8d17c	59	src = data;
1da177e4	60
9d70a6c8	61	if ((partial + len) > 63) {
cfa8d17c NP	62	u32 temp[SHA_WORKSPACE_WORDS];
cfa8d17c NP	63
9d70a6c8	64	if (partial) {
bcb0ad2b HX	65	done = -partial;
bcb0ad2b HX	66	memcpy(sctx->buffer + partial, data, done + 64);
cfa8d17c	67	src = sctx->buffer;
1da177e4	68	}
cfa8d17c NP	69
	70	do {
	71	sha_transform(sctx->state, src, temp);
9d70a6c8 NP	72	done += 64;
	73	src = data + done;
	74	} while (done + 63 < len);
cfa8d17c NP	75
cfa8d17c NP	76	memset(temp, 0, sizeof(temp));
9d70a6c8	77	partial = 0;
1da177e4	78	}
9d70a6c8	79	memcpy(sctx->buffer + partial, src, len - done);
1da177e4 LT	80	}
	81
	82
	83	/* Add padding and return the message digest. */
6c2bb98b	84	static void sha1_final(struct crypto_tfm tfm, u8 out)
1da177e4	85	{
6c2bb98b	86	struct sha1_ctx *sctx = crypto_tfm_ctx(tfm);
06ace7a9 HX	87	__be32 dst = (__be32 )out;
	88	u32 i, index, padlen;
	89	__be64 bits;
1da177e4 LT	90	static const u8 padding[64] = { 0x80, };
1da177e4 LT	91
fa9b98fd	92	bits = cpu_to_be64(sctx->count << 3);
1da177e4 LT	93
1da177e4 LT	94	/* Pad out to 56 mod 64 */
fa9b98fd	95	index = sctx->count & 0x3f;
1da177e4	96	padlen = (index < 56) ? (56 - index) : ((64+56) - index);
6c2bb98b	97	sha1_update(tfm, padding, padlen);
1da177e4 LT	98
1da177e4 LT	99	/* Append length */
6c2bb98b	100	sha1_update(tfm, (const u8 *)&bits, sizeof(bits));
1da177e4 LT	101
1da177e4 LT	102	/* Store state in digest */
06ace7a9 HX	103	for (i = 0; i < 5; i++)
06ace7a9 HX	104	dst[i] = cpu_to_be32(sctx->state[i]);
1da177e4 LT	105
	106	/* Wipe context */
	107	memset(sctx, 0, sizeof *sctx);
	108	}
	109
	110	static struct crypto_alg alg = {
	111	.cra_name = "sha1",
b3be9a6d	112	.cra_driver_name= "sha1-generic",
1da177e4 LT	113	.cra_flags = CRYPTO_ALG_TYPE_DIGEST,
	114	.cra_blocksize = SHA1_HMAC_BLOCK_SIZE,
	115	.cra_ctxsize = sizeof(struct sha1_ctx),
	116	.cra_module = THIS_MODULE,
e1147d8f	117	.cra_alignmask = 3,
1da177e4 LT	118	.cra_list = LIST_HEAD_INIT(alg.cra_list),
	119	.cra_u = { .digest = {
	120	.dia_digestsize = SHA1_DIGEST_SIZE,
	121	.dia_init = sha1_init,
	122	.dia_update = sha1_update,
	123	.dia_final = sha1_final } }
	124	};
	125
	126	static int __init init(void)
	127	{
	128	return crypto_register_alg(&alg);
	129	}
	130
	131	static void __exit fini(void)
	132	{
	133	crypto_unregister_alg(&alg);
	134	}
	135
	136	module_init(init);
	137	module_exit(fini);
	138
	139	MODULE_LICENSE("GPL");
	140	MODULE_DESCRIPTION("SHA1 Secure Hash Algorithm");
b3be9a6d ML	141
b3be9a6d ML	142	MODULE_ALIAS("sha1-generic");