[u-boot.git] / common / hash.c

// SPDX-License-Identifier: GPL-2.0+
/*
 * Copyright (c) 2012 The Chromium OS Authors.
 *
 * (C) Copyright 2011
 * Joe Hershberger, National Instruments, [email protected]
 *
 * (C) Copyright 2000
 * Wolfgang Denk, DENX Software Engineering, [email protected].
 */

#ifndef USE_HOSTCC
#include <command.h>
#include <env.h>
#include <log.h>
#include <malloc.h>
#include <mapmem.h>
#include <hw_sha.h>
#include <asm/cache.h>
#include <asm/global_data.h>
#include <asm/io.h>
#include <linux/errno.h>
#else
#include "mkimage.h"
#include <linux/compiler_attributes.h>
#include <time.h>
#include <linux/kconfig.h>
#endif /* !USE_HOSTCC*/

#include <hash.h>
#include <image.h>
#include <u-boot/crc.h>
#include <u-boot/sha1.h>
#include <u-boot/sha256.h>
#include <u-boot/sha512.h>
#include <u-boot/md5.h>

static int __maybe_unused hash_init_sha1(struct hash_algo *algo, void **ctxp)
{
	sha1_context *ctx = malloc(sizeof(sha1_context));
	sha1_starts(ctx);
	*ctxp = ctx;
	return 0;
}

static int __maybe_unused hash_update_sha1(struct hash_algo *algo, void *ctx,
					   const void *buf, unsigned int size,
					   int is_last)
{
	sha1_update((sha1_context *)ctx, buf, size);
	return 0;
}

static int __maybe_unused hash_finish_sha1(struct hash_algo *algo, void *ctx,
					   void *dest_buf, int size)
{
	if (size < algo->digest_size)
		return -1;

	sha1_finish((sha1_context *)ctx, dest_buf);
	free(ctx);
	return 0;
}

static int __maybe_unused hash_init_sha256(struct hash_algo *algo, void **ctxp)
{
	sha256_context *ctx = malloc(sizeof(sha256_context));
	sha256_starts(ctx);
	*ctxp = ctx;
	return 0;
}

static int __maybe_unused hash_update_sha256(struct hash_algo *algo, void *ctx,
					     const void *buf, uint size,
					     int is_last)
{
	sha256_update((sha256_context *)ctx, buf, size);
	return 0;
}

static int __maybe_unused hash_finish_sha256(struct hash_algo *algo, void *ctx,
					     void *dest_buf, int size)
{
	if (size < algo->digest_size)
		return -1;

	sha256_finish((sha256_context *)ctx, dest_buf);
	free(ctx);
	return 0;
}

static int __maybe_unused hash_init_sha384(struct hash_algo *algo, void **ctxp)
{
	sha512_context *ctx = malloc(sizeof(sha512_context));
	sha384_starts(ctx);
	*ctxp = ctx;
	return 0;
}

static int __maybe_unused hash_update_sha384(struct hash_algo *algo, void *ctx,
					     const void *buf, uint size,
					     int is_last)
{
	sha384_update((sha512_context *)ctx, buf, size);
	return 0;
}

static int __maybe_unused hash_finish_sha384(struct hash_algo *algo, void *ctx,
					     void *dest_buf, int size)
{
	if (size < algo->digest_size)
		return -1;

	sha384_finish((sha512_context *)ctx, dest_buf);
	free(ctx);
	return 0;
}

static int __maybe_unused hash_init_sha512(struct hash_algo *algo, void **ctxp)
{
	sha512_context *ctx = malloc(sizeof(sha512_context));
	sha512_starts(ctx);
	*ctxp = ctx;
	return 0;
}

static int __maybe_unused hash_update_sha512(struct hash_algo *algo, void *ctx,
					     const void *buf, uint size,
					     int is_last)
{
	sha512_update((sha512_context *)ctx, buf, size);
	return 0;
}

static int __maybe_unused hash_finish_sha512(struct hash_algo *algo, void *ctx,
					     void *dest_buf, int size)
{
	if (size < algo->digest_size)
		return -1;

	sha512_finish((sha512_context *)ctx, dest_buf);
	free(ctx);
	return 0;
}

static int __maybe_unused hash_init_crc16_ccitt(struct hash_algo *algo,
						void **ctxp)
{
	uint16_t *ctx = malloc(sizeof(uint16_t));
	*ctx = 0;
	*ctxp = ctx;
	return 0;
}

static int __maybe_unused hash_update_crc16_ccitt(struct hash_algo *algo,
						  void *ctx, const void *buf,
						  unsigned int size,
						  int is_last)
{
	*((uint16_t *)ctx) = crc16_ccitt(*((uint16_t *)ctx), buf, size);
	return 0;
}

static int __maybe_unused hash_finish_crc16_ccitt(struct hash_algo *algo,
						  void *ctx, void *dest_buf,
						  int size)
{
	if (size < algo->digest_size)
		return -1;

	*((uint16_t *)dest_buf) = *((uint16_t *)ctx);
	free(ctx);
	return 0;
}

static int __maybe_unused hash_init_crc32(struct hash_algo *algo, void **ctxp)
{
	uint32_t *ctx = malloc(sizeof(uint32_t));
	*ctx = 0;
	*ctxp = ctx;
	return 0;
}

static int __maybe_unused hash_update_crc32(struct hash_algo *algo, void *ctx,
					    const void *buf, unsigned int size,
					    int is_last)
{
	*((uint32_t *)ctx) = crc32(*((uint32_t *)ctx), buf, size);
	return 0;
}

static int __maybe_unused hash_finish_crc32(struct hash_algo *algo, void *ctx,
					    void *dest_buf, int size)
{
	if (size < algo->digest_size)
		return -1;

	*((uint32_t *)dest_buf) = *((uint32_t *)ctx);
	free(ctx);
	return 0;
}

/*
 * These are the hash algorithms we support.  If we have hardware acceleration
 * is enable we will use that, otherwise a software version of the algorithm.
 * Note that algorithm names must be in lower case.
 */
static struct hash_algo hash_algo[] = {
#if CONFIG_IS_ENABLED(MD5)
	{
		.name		= "md5",
		.digest_size	= MD5_SUM_LEN,
		.chunk_size	= CHUNKSZ_MD5,
		.hash_func_ws	= md5_wd,
	},
#endif
#if CONFIG_IS_ENABLED(SHA1)
	{
		.name		= "sha1",
		.digest_size	= SHA1_SUM_LEN,
		.chunk_size	= CHUNKSZ_SHA1,
#if CONFIG_IS_ENABLED(SHA_HW_ACCEL)
		.hash_func_ws	= hw_sha1,
#else
		.hash_func_ws	= sha1_csum_wd,
#endif
#if CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
		.hash_init	= hw_sha_init,
		.hash_update	= hw_sha_update,
		.hash_finish	= hw_sha_finish,
#else
		.hash_init	= hash_init_sha1,
		.hash_update	= hash_update_sha1,
		.hash_finish	= hash_finish_sha1,
#endif
	},
#endif
#if CONFIG_IS_ENABLED(SHA256)
	{
		.name		= "sha256",
		.digest_size	= SHA256_SUM_LEN,
		.chunk_size	= CHUNKSZ_SHA256,
#if CONFIG_IS_ENABLED(SHA_HW_ACCEL)
		.hash_func_ws	= hw_sha256,
#else
		.hash_func_ws	= sha256_csum_wd,
#endif
#if CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
		.hash_init	= hw_sha_init,
		.hash_update	= hw_sha_update,
		.hash_finish	= hw_sha_finish,
#else
		.hash_init	= hash_init_sha256,
		.hash_update	= hash_update_sha256,
		.hash_finish	= hash_finish_sha256,
#endif
	},
#endif
#if CONFIG_IS_ENABLED(SHA384)
	{
		.name		= "sha384",
		.digest_size	= SHA384_SUM_LEN,
		.chunk_size	= CHUNKSZ_SHA384,
#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL)
		.hash_func_ws	= hw_sha384,
#else
		.hash_func_ws	= sha384_csum_wd,
#endif
#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL) && CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
		.hash_init	= hw_sha_init,
		.hash_update	= hw_sha_update,
		.hash_finish	= hw_sha_finish,
#else
		.hash_init	= hash_init_sha384,
		.hash_update	= hash_update_sha384,
		.hash_finish	= hash_finish_sha384,
#endif
	},
#endif
#if CONFIG_IS_ENABLED(SHA512)
	{
		.name		= "sha512",
		.digest_size	= SHA512_SUM_LEN,
		.chunk_size	= CHUNKSZ_SHA512,
#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL)
		.hash_func_ws	= hw_sha512,
#else
		.hash_func_ws	= sha512_csum_wd,
#endif
#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL) && CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
		.hash_init	= hw_sha_init,
		.hash_update	= hw_sha_update,
		.hash_finish	= hw_sha_finish,
#else
		.hash_init	= hash_init_sha512,
		.hash_update	= hash_update_sha512,
		.hash_finish	= hash_finish_sha512,
#endif
	},
#endif
#if CONFIG_IS_ENABLED(CRC16)
	{
		.name		= "crc16-ccitt",
		.digest_size	= 2,
		.chunk_size	= CHUNKSZ,
		.hash_func_ws	= crc16_ccitt_wd_buf,
		.hash_init	= hash_init_crc16_ccitt,
		.hash_update	= hash_update_crc16_ccitt,
		.hash_finish	= hash_finish_crc16_ccitt,
	},
#endif
#if CONFIG_IS_ENABLED(CRC8) && IS_ENABLED(CONFIG_HASH_CRC8)
	{
		.name		= "crc8",
		.digest_size	= 1,
		.chunk_size	= CHUNKSZ_CRC32,
		.hash_func_ws	= crc8_wd_buf,
	},
#endif
#if CONFIG_IS_ENABLED(CRC32)
	{
		.name		= "crc32",
		.digest_size	= 4,
		.chunk_size	= CHUNKSZ_CRC32,
		.hash_func_ws	= crc32_wd_buf,
		.hash_init	= hash_init_crc32,
		.hash_update	= hash_update_crc32,
		.hash_finish	= hash_finish_crc32,
	},
#endif
};

/* Try to minimize code size for boards that don't want much hashing */
#if CONFIG_IS_ENABLED(SHA256) || IS_ENABLED(CONFIG_CMD_SHA1SUM) || \
	CONFIG_IS_ENABLED(CRC32_VERIFY) || IS_ENABLED(CONFIG_CMD_HASH) || \
	CONFIG_IS_ENABLED(SHA384) || CONFIG_IS_ENABLED(SHA512) || \
	IS_ENABLED(CONFIG_CMD_MD5SUM)
#define multi_hash()	1
#else
#define multi_hash()	0
#endif

int hash_lookup_algo(const char *algo_name, struct hash_algo **algop)
{
	int i;

	for (i = 0; i < ARRAY_SIZE(hash_algo); i++) {
		if (!strcmp(algo_name, hash_algo[i].name)) {
			*algop = &hash_algo[i];
			return 0;
		}
	}

	debug("Unknown hash algorithm '%s'\n", algo_name);
	return -EPROTONOSUPPORT;
}

int hash_progressive_lookup_algo(const char *algo_name,
				 struct hash_algo **algop)
{
	int i;

	for (i = 0; i < ARRAY_SIZE(hash_algo); i++) {
		if (!strcmp(algo_name, hash_algo[i].name)) {
			if (hash_algo[i].hash_init) {
				*algop = &hash_algo[i];
				return 0;
			}
		}
	}

	debug("Unknown hash algorithm '%s'\n", algo_name);
	return -EPROTONOSUPPORT;
}

#ifndef USE_HOSTCC
int hash_parse_string(const char *algo_name, const char *str, uint8_t *result)
{
	struct hash_algo *algo;
	int ret;
	int i;

	ret = hash_lookup_algo(algo_name, &algo);
	if (ret)
		return ret;

	for (i = 0; i < algo->digest_size; i++) {
		char chr[3];

		strlcpy(chr, &str[i * 2], 3);
		result[i] = hextoul(chr, NULL);
	}

	return 0;
}

int hash_block(const char *algo_name, const void *data, unsigned int len,
	       uint8_t *output, int *output_size)
{
	struct hash_algo *algo;
	int ret;

	ret = hash_lookup_algo(algo_name, &algo);
	if (ret)
		return ret;

	if (output_size && *output_size < algo->digest_size) {
		debug("Output buffer size %d too small (need %d bytes)",
		      *output_size, algo->digest_size);
		return -ENOSPC;
	}
	if (output_size)
		*output_size = algo->digest_size;
	algo->hash_func_ws(data, len, output, algo->chunk_size);

	return 0;
}

#if !defined(CONFIG_XPL_BUILD) && (defined(CONFIG_CMD_HASH) || \
	defined(CONFIG_CMD_SHA1SUM) || defined(CONFIG_CMD_CRC32)) || \
	defined(CONFIG_CMD_MD5SUM)
/**
 * store_result: Store the resulting sum to an address or variable
 *
 * @algo:		Hash algorithm being used
 * @sum:		Hash digest (algo->digest_size bytes)
 * @dest:		Destination, interpreted as a hex address if it starts
 *			with * (or allow_env_vars is 0) or otherwise as an
 *			environment variable.
 * @allow_env_vars:	non-zero to permit storing the result to an
 *			variable environment
 */
static void store_result(struct hash_algo *algo, const uint8_t *sum,
			 const char *dest, int allow_env_vars)
{
	unsigned int i;
	int env_var = 0;

	/*
	 * If environment variables are allowed, then we assume that 'dest'
	 * is an environment variable, unless it starts with *, in which
	 * case we assume it is an address. If not allowed, it is always an
	 * address. This is to support the crc32 command.
	 */
	if (allow_env_vars) {
		if (*dest == '*')
			dest++;
		else
			env_var = 1;
	}

	if (env_var) {
		char str_output[HASH_MAX_DIGEST_SIZE * 2 + 1];
		char *str_ptr = str_output;

		for (i = 0; i < algo->digest_size; i++) {
			sprintf(str_ptr, "%02x", sum[i]);
			str_ptr += 2;
		}
		*str_ptr = '\0';
		env_set(dest, str_output);
	} else {
		ulong addr;
		void *buf;

		addr = hextoul(dest, NULL);
		buf = map_sysmem(addr, algo->digest_size);
		memcpy(buf, sum, algo->digest_size);
		unmap_sysmem(buf);
	}
}

/**
 * parse_verify_sum: Parse a hash verification parameter
 *
 * @algo:		Hash algorithm being used
 * @verify_str:		Argument to parse. If it starts with * then it is
 *			interpreted as a hex address containing the hash.
 *			If the length is exactly the right number of hex digits
 *			for the digest size, then we assume it is a hex digest.
 *			Otherwise we assume it is an environment variable, and
 *			look up its value (it must contain a hex digest).
 * @vsum:		Returns binary digest value (algo->digest_size bytes)
 * @allow_env_vars:	non-zero to permit storing the result to an environment
 *			variable. If 0 then verify_str is assumed to be an
 *			address, and the * prefix is not expected.
 * Return: 0 if ok, non-zero on error
 */
static int parse_verify_sum(struct hash_algo *algo, char *verify_str,
			    uint8_t *vsum, int allow_env_vars)
{
	int env_var = 0;

	/* See comment above in store_result() */
	if (allow_env_vars) {
		if (*verify_str == '*')
			verify_str++;
		else
			env_var = 1;
	}

	if (!env_var) {
		ulong addr;
		void *buf;

		addr = hextoul(verify_str, NULL);
		buf = map_sysmem(addr, algo->digest_size);
		memcpy(vsum, buf, algo->digest_size);
	} else {
		char *vsum_str;
		int digits = algo->digest_size * 2;

		/*
		 * As with the original code from sha1sum.c, we assume that a
		 * string which matches the digest size exactly is a hex
		 * string and not an environment variable.
		 */
		if (strlen(verify_str) == digits)
			vsum_str = verify_str;
		else {
			vsum_str = env_get(verify_str);
			if (vsum_str == NULL || strlen(vsum_str) != digits) {
				printf("Expected %d hex digits in env var\n",
				       digits);
				return 1;
			}
		}

		hash_parse_string(algo->name, vsum_str, vsum);
	}
	return 0;
}

static void hash_show(struct hash_algo *algo, ulong addr, ulong len, uint8_t *output)
{
	int i;

	printf("%s for %08lx ... %08lx ==> ", algo->name, addr, addr + len - 1);
	for (i = 0; i < algo->digest_size; i++)
		printf("%02x", output[i]);
}

int hash_command(const char *algo_name, int flags, struct cmd_tbl *cmdtp,
		 int flag, int argc, char *const argv[])
{
	ulong addr, len;

	if ((argc < 2) || ((flags & HASH_FLAG_VERIFY) && (argc < 3)))
		return CMD_RET_USAGE;

	addr = hextoul(*argv++, NULL);
	len = hextoul(*argv++, NULL);

	if (multi_hash()) {
		struct hash_algo *algo;
		u8 *output;
		uint8_t vsum[HASH_MAX_DIGEST_SIZE];
		void *buf;

		if (hash_lookup_algo(algo_name, &algo)) {
			printf("Unknown hash algorithm '%s'\n", algo_name);
			return CMD_RET_USAGE;
		}
		argc -= 2;

		if (algo->digest_size > HASH_MAX_DIGEST_SIZE) {
			puts("HASH_MAX_DIGEST_SIZE exceeded\n");
			return 1;
		}

		output = memalign(ARCH_DMA_MINALIGN,
				  sizeof(uint32_t) * HASH_MAX_DIGEST_SIZE);
		if (!output)
			return CMD_RET_FAILURE;

		buf = map_sysmem(addr, len);
		algo->hash_func_ws(buf, len, output, algo->chunk_size);
		unmap_sysmem(buf);

		/* Try to avoid code bloat when verify is not needed */
#if defined(CONFIG_CRC32_VERIFY) || defined(CONFIG_SHA1SUM_VERIFY) || \
	defined(CONFIG_MD5SUM_VERIFY) || defined(CONFIG_HASH_VERIFY)
		if (flags & HASH_FLAG_VERIFY) {
#else
		if (0) {
#endif
			if (parse_verify_sum(algo, *argv, vsum,
					flags & HASH_FLAG_ENV)) {
				printf("ERROR: %s does not contain a valid "
					"%s sum\n", *argv, algo->name);
				free(output);
				return 1;
			}
			if (memcmp(output, vsum, algo->digest_size) != 0) {
				int i;

				hash_show(algo, addr, len, output);
				printf(" != ");
				for (i = 0; i < algo->digest_size; i++)
					printf("%02x", vsum[i]);
				puts(" ** ERROR **\n");
				free(output);
				return 1;
			}
		} else {
			hash_show(algo, addr, len, output);
			printf("\n");

			if (argc) {
				store_result(algo, output, *argv,
					flags & HASH_FLAG_ENV);
			}
		}

		free(output);

	/* Horrible code size hack for boards that just want crc32 */
	} else {
		ulong crc;
		ulong *ptr;

		crc = crc32_wd(0, (const uchar *)addr, len, CHUNKSZ_CRC32);

		printf("CRC32 for %08lx ... %08lx ==> %08lx\n",
				addr, addr + len - 1, crc);

		if (argc >= 3) {
			ptr = (ulong *)hextoul(argv[0], NULL);
			*ptr = crc;
		}
	}

	return 0;
}
#endif /* CONFIG_CMD_HASH || CONFIG_CMD_SHA1SUM || CONFIG_CMD_CRC32) */
#endif /* !USE_HOSTCC */
Commit	Line	Data
83d290c5	1	// SPDX-License-Identifier: GPL-2.0+
460408ef SG	2	/*
	3	* Copyright (c) 2012 The Chromium OS Authors.
	4	*
	5	* (C) Copyright 2011
	6	* Joe Hershberger, National Instruments, [email protected]
	7	*
	8	* (C) Copyright 2000
	9	* Wolfgang Denk, DENX Software Engineering, [email protected].
460408ef SG	10	*/
460408ef SG	11
2dd90027	12	#ifndef USE_HOSTCC
460408ef	13	#include <command.h>
9fb625ce	14	#include <env.h>
f7ae49fc	15	#include <log.h>
bf007ebb	16	#include <malloc.h>
0eb25b61	17	#include <mapmem.h>
1f9c9280	18	#include <hw_sha.h>
90526e9f	19	#include <asm/cache.h>
401d1c4f	20	#include <asm/global_data.h>
2dd90027	21	#include <asm/io.h>
1221ce45	22	#include <linux/errno.h>
2dd90027 RG	23	#else
2dd90027 RG	24	#include "mkimage.h"
d54f7e3f	25	#include <linux/compiler_attributes.h>
2dd90027	26	#include <time.h>
2c21256b	27	#include <linux/kconfig.h>
2dd90027 RG	28	#endif /* !USE_HOSTCC*/
2dd90027 RG	29
460408ef	30	#include <hash.h>
4d72caa5	31	#include <image.h>
2dd90027	32	#include <u-boot/crc.h>
2b9912e6 JH	33	#include <u-boot/sha1.h>
2b9912e6 JH	34	#include <u-boot/sha256.h>
d16b38f4	35	#include <u-boot/sha512.h>
2dd90027	36	#include <u-boot/md5.h>
460408ef	37
d54f7e3f	38	static int __maybe_unused hash_init_sha1(struct hash_algo algo, void *ctxp)
bf007ebb HT	39	{
	40	sha1_context *ctx = malloc(sizeof(sha1_context));
	41	sha1_starts(ctx);
	42	*ctxp = ctx;
	43	return 0;
	44	}
	45
d54f7e3f SG	46	static int __maybe_unused hash_update_sha1(struct hash_algo algo, void ctx,
	47	const void *buf, unsigned int size,
	48	int is_last)
bf007ebb HT	49	{
	50	sha1_update((sha1_context *)ctx, buf, size);
	51	return 0;
	52	}
	53
d54f7e3f SG	54	static int __maybe_unused hash_finish_sha1(struct hash_algo algo, void ctx,
d54f7e3f SG	55	void *dest_buf, int size)
bf007ebb HT	56	{
	57	if (size < algo->digest_size)
	58	return -1;
	59
	60	sha1_finish((sha1_context *)ctx, dest_buf);
	61	free(ctx);
	62	return 0;
	63	}
bf007ebb	64
d54f7e3f	65	static int __maybe_unused hash_init_sha256(struct hash_algo algo, void *ctxp)
bf007ebb HT	66	{
	67	sha256_context *ctx = malloc(sizeof(sha256_context));
	68	sha256_starts(ctx);
	69	*ctxp = ctx;
	70	return 0;
	71	}
	72
d54f7e3f SG	73	static int __maybe_unused hash_update_sha256(struct hash_algo algo, void ctx,
	74	const void *buf, uint size,
	75	int is_last)
bf007ebb HT	76	{
	77	sha256_update((sha256_context *)ctx, buf, size);
	78	return 0;
	79	}
	80
d54f7e3f SG	81	static int __maybe_unused hash_finish_sha256(struct hash_algo algo, void ctx,
d54f7e3f SG	82	void *dest_buf, int size)
bf007ebb HT	83	{
	84	if (size < algo->digest_size)
	85	return -1;
	86
	87	sha256_finish((sha256_context *)ctx, dest_buf);
	88	free(ctx);
	89	return 0;
	90	}
bf007ebb	91
d54f7e3f	92	static int __maybe_unused hash_init_sha384(struct hash_algo algo, void *ctxp)
d16b38f4 RD	93	{
	94	sha512_context *ctx = malloc(sizeof(sha512_context));
	95	sha384_starts(ctx);
	96	*ctxp = ctx;
	97	return 0;
	98	}
	99
d54f7e3f SG	100	static int __maybe_unused hash_update_sha384(struct hash_algo algo, void ctx,
	101	const void *buf, uint size,
	102	int is_last)
d16b38f4 RD	103	{
	104	sha384_update((sha512_context *)ctx, buf, size);
	105	return 0;
	106	}
	107
d54f7e3f SG	108	static int __maybe_unused hash_finish_sha384(struct hash_algo algo, void ctx,
d54f7e3f SG	109	void *dest_buf, int size)
d16b38f4 RD	110	{
	111	if (size < algo->digest_size)
	112	return -1;
	113
	114	sha384_finish((sha512_context *)ctx, dest_buf);
	115	free(ctx);
	116	return 0;
	117	}
d16b38f4	118
d54f7e3f	119	static int __maybe_unused hash_init_sha512(struct hash_algo algo, void *ctxp)
d16b38f4 RD	120	{
	121	sha512_context *ctx = malloc(sizeof(sha512_context));
	122	sha512_starts(ctx);
	123	*ctxp = ctx;
	124	return 0;
	125	}
	126
d54f7e3f SG	127	static int __maybe_unused hash_update_sha512(struct hash_algo algo, void ctx,
	128	const void *buf, uint size,
	129	int is_last)
d16b38f4 RD	130	{
	131	sha512_update((sha512_context *)ctx, buf, size);
	132	return 0;
	133	}
	134
d54f7e3f SG	135	static int __maybe_unused hash_finish_sha512(struct hash_algo algo, void ctx,
d54f7e3f SG	136	void *dest_buf, int size)
d16b38f4 RD	137	{
	138	if (size < algo->digest_size)
	139	return -1;
	140
d16b38f4 RD	141	sha512_finish((sha512_context *)ctx, dest_buf);
	142	free(ctx);
	143	return 0;
	144	}
d16b38f4	145
5929c2f3 SG	146	static int __maybe_unused hash_init_crc16_ccitt(struct hash_algo *algo,
5929c2f3 SG	147	void **ctxp)
51c2345b PT	148	{
	149	uint16_t *ctx = malloc(sizeof(uint16_t));
	150	*ctx = 0;
	151	*ctxp = ctx;
	152	return 0;
	153	}
	154
5929c2f3 SG	155	static int __maybe_unused hash_update_crc16_ccitt(struct hash_algo *algo,
	156	void ctx, const void buf,
	157	unsigned int size,
	158	int is_last)
51c2345b PT	159	{
	160	((uint16_t )ctx) = crc16_ccitt(((uint16_t )ctx), buf, size);
	161	return 0;
	162	}
	163
5929c2f3 SG	164	static int __maybe_unused hash_finish_crc16_ccitt(struct hash_algo *algo,
	165	void ctx, void dest_buf,
	166	int size)
51c2345b PT	167	{
	168	if (size < algo->digest_size)
	169	return -1;
	170
	171	((uint16_t )dest_buf) = ((uint16_t )ctx);
	172	free(ctx);
	173	return 0;
	174	}
	175
e7d285b2	176	static int __maybe_unused hash_init_crc32(struct hash_algo algo, void *ctxp)
bf007ebb HT	177	{
	178	uint32_t *ctx = malloc(sizeof(uint32_t));
	179	*ctx = 0;
	180	*ctxp = ctx;
	181	return 0;
	182	}
	183
e7d285b2 SG	184	static int __maybe_unused hash_update_crc32(struct hash_algo algo, void ctx,
	185	const void *buf, unsigned int size,
	186	int is_last)
bf007ebb HT	187	{
	188	((uint32_t )ctx) = crc32(((uint32_t )ctx), buf, size);
	189	return 0;
	190	}
	191
e7d285b2 SG	192	static int __maybe_unused hash_finish_crc32(struct hash_algo algo, void ctx,
e7d285b2 SG	193	void *dest_buf, int size)
bf007ebb HT	194	{
	195	if (size < algo->digest_size)
	196	return -1;
	197
	198	((uint32_t )dest_buf) = ((uint32_t )ctx);
	199	free(ctx);
	200	return 0;
	201	}
	202
460408ef	203	/*
78eda89e TR	204	* These are the hash algorithms we support. If we have hardware acceleration
	205	* is enable we will use that, otherwise a software version of the algorithm.
	206	* Note that algorithm names must be in lower case.
460408ef SG	207	*/
460408ef SG	208	static struct hash_algo hash_algo[] = {
2c21256b	209	#if CONFIG_IS_ENABLED(MD5)
fe54aeaa AG	210	{
	211	.name = "md5",
	212	.digest_size = MD5_SUM_LEN,
	213	.chunk_size = CHUNKSZ_MD5,
	214	.hash_func_ws = md5_wd,
	215	},
	216	#endif
2c21256b	217	#if CONFIG_IS_ENABLED(SHA1)
1f9c9280	218	{
0cf207ec	219	.name = "sha1",
78eda89e TR	220	.digest_size = SHA1_SUM_LEN,
78eda89e TR	221	.chunk_size = CHUNKSZ_SHA1,
2c21256b	222	#if CONFIG_IS_ENABLED(SHA_HW_ACCEL)
78eda89e TR	223	.hash_func_ws = hw_sha1,
	224	#else
	225	.hash_func_ws = sha1_csum_wd,
94e3c8c4	226	#endif
2c21256b	227	#if CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
78eda89e TR	228	.hash_init = hw_sha_init,
	229	.hash_update = hw_sha_update,
	230	.hash_finish = hw_sha_finish,
	231	#else
	232	.hash_init = hash_init_sha1,
	233	.hash_update = hash_update_sha1,
	234	.hash_finish = hash_finish_sha1,
1f9c9280	235	#endif
460408ef SG	236	},
460408ef SG	237	#endif
2c21256b	238	#if CONFIG_IS_ENABLED(SHA256)
460408ef	239	{
78eda89e TR	240	.name = "sha256",
	241	.digest_size = SHA256_SUM_LEN,
	242	.chunk_size = CHUNKSZ_SHA256,
2c21256b	243	#if CONFIG_IS_ENABLED(SHA_HW_ACCEL)
78eda89e TR	244	.hash_func_ws = hw_sha256,
	245	#else
	246	.hash_func_ws = sha256_csum_wd,
	247	#endif
2c21256b	248	#if CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
78eda89e TR	249	.hash_init = hw_sha_init,
	250	.hash_update = hw_sha_update,
	251	.hash_finish = hw_sha_finish,
	252	#else
	253	.hash_init = hash_init_sha256,
	254	.hash_update = hash_update_sha256,
	255	.hash_finish = hash_finish_sha256,
	256	#endif
460408ef	257	},
d16b38f4	258	#endif
2c21256b	259	#if CONFIG_IS_ENABLED(SHA384)
d16b38f4 RD	260	{
	261	.name = "sha384",
	262	.digest_size = SHA384_SUM_LEN,
	263	.chunk_size = CHUNKSZ_SHA384,
2c21256b	264	#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL)
a479f103 JS	265	.hash_func_ws = hw_sha384,
a479f103 JS	266	#else
d16b38f4	267	.hash_func_ws = sha384_csum_wd,
a479f103	268	#endif
2c21256b	269	#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL) && CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
a479f103 JS	270	.hash_init = hw_sha_init,
	271	.hash_update = hw_sha_update,
	272	.hash_finish = hw_sha_finish,
	273	#else
d16b38f4 RD	274	.hash_init = hash_init_sha384,
	275	.hash_update = hash_update_sha384,
	276	.hash_finish = hash_finish_sha384,
a479f103	277	#endif
d16b38f4 RD	278	},
d16b38f4 RD	279	#endif
2c21256b	280	#if CONFIG_IS_ENABLED(SHA512)
d16b38f4 RD	281	{
	282	.name = "sha512",
	283	.digest_size = SHA512_SUM_LEN,
	284	.chunk_size = CHUNKSZ_SHA512,
2c21256b	285	#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL)
a479f103 JS	286	.hash_func_ws = hw_sha512,
a479f103 JS	287	#else
d16b38f4	288	.hash_func_ws = sha512_csum_wd,
a479f103	289	#endif
2c21256b	290	#if CONFIG_IS_ENABLED(SHA512_HW_ACCEL) && CONFIG_IS_ENABLED(SHA_PROG_HW_ACCEL)
a479f103 JS	291	.hash_init = hw_sha_init,
	292	.hash_update = hw_sha_update,
	293	.hash_finish = hw_sha_finish,
	294	#else
d16b38f4 RD	295	.hash_init = hash_init_sha512,
	296	.hash_update = hash_update_sha512,
	297	.hash_finish = hash_finish_sha512,
a479f103	298	#endif
d16b38f4	299	},
460408ef	300	#endif
5929c2f3	301	#if CONFIG_IS_ENABLED(CRC16)
51c2345b PT	302	{
	303	.name = "crc16-ccitt",
	304	.digest_size = 2,
	305	.chunk_size = CHUNKSZ,
	306	.hash_func_ws = crc16_ccitt_wd_buf,
	307	.hash_init = hash_init_crc16_ccitt,
	308	.hash_update = hash_update_crc16_ccitt,
	309	.hash_finish = hash_finish_crc16_ccitt,
	310	},
5929c2f3	311	#endif
6f1b27a7 SG	312	#if CONFIG_IS_ENABLED(CRC8) && IS_ENABLED(CONFIG_HASH_CRC8)
	313	{
	314	.name = "crc8",
	315	.digest_size = 1,
	316	.chunk_size = CHUNKSZ_CRC32,
	317	.hash_func_ws = crc8_wd_buf,
	318	},
	319	#endif
e7d285b2	320	#if CONFIG_IS_ENABLED(CRC32)
d20a40de	321	{
78eda89e TR	322	.name = "crc32",
	323	.digest_size = 4,
	324	.chunk_size = CHUNKSZ_CRC32,
	325	.hash_func_ws = crc32_wd_buf,
	326	.hash_init = hash_init_crc32,
	327	.hash_update = hash_update_crc32,
	328	.hash_finish = hash_finish_crc32,
d20a40de	329	},
e7d285b2	330	#endif
460408ef SG	331	};
460408ef SG	332
d20a40de	333	/* Try to minimize code size for boards that don't want much hashing */
5cbdd156	334	#if CONFIG_IS_ENABLED(SHA256) \|\| IS_ENABLED(CONFIG_CMD_SHA1SUM) \|\| \
bdb133ad	335	CONFIG_IS_ENABLED(CRC32_VERIFY) \|\| IS_ENABLED(CONFIG_CMD_HASH) \|\| \
6ec3f920 IO	336	CONFIG_IS_ENABLED(SHA384) \|\| CONFIG_IS_ENABLED(SHA512) \|\| \
6ec3f920 IO	337	IS_ENABLED(CONFIG_CMD_MD5SUM)
d20a40de SG	338	#define multi_hash() 1
	339	#else
	340	#define multi_hash() 0
	341	#endif
	342
2dd90027 RG	343	int hash_lookup_algo(const char algo_name, struct hash_algo *algop)
	344	{
	345	int i;
	346
	347	for (i = 0; i < ARRAY_SIZE(hash_algo); i++) {
	348	if (!strcmp(algo_name, hash_algo[i].name)) {
	349	*algop = &hash_algo[i];
	350	return 0;
	351	}
	352	}
	353
	354	debug("Unknown hash algorithm '%s'\n", algo_name);
	355	return -EPROTONOSUPPORT;
	356	}
	357
	358	int hash_progressive_lookup_algo(const char *algo_name,
	359	struct hash_algo **algop)
	360	{
	361	int i;
	362
	363	for (i = 0; i < ARRAY_SIZE(hash_algo); i++) {
	364	if (!strcmp(algo_name, hash_algo[i].name)) {
	365	if (hash_algo[i].hash_init) {
	366	*algop = &hash_algo[i];
	367	return 0;
	368	}
	369	}
	370	}
	371
	372	debug("Unknown hash algorithm '%s'\n", algo_name);
	373	return -EPROTONOSUPPORT;
	374	}
	375
	376	#ifndef USE_HOSTCC
8f0b1e24 SR	377	int hash_parse_string(const char algo_name, const char str, uint8_t *result)
	378	{
	379	struct hash_algo *algo;
	380	int ret;
	381	int i;
	382
	383	ret = hash_lookup_algo(algo_name, &algo);
	384	if (ret)
	385	return ret;
	386
	387	for (i = 0; i < algo->digest_size; i++) {
	388	char chr[3];
	389
031725f8	390	strlcpy(chr, &str[i * 2], 3);
7e5f460e	391	result[i] = hextoul(chr, NULL);
8f0b1e24 SR	392	}
	393
	394	return 0;
	395	}
	396
48ad68de TR	397	int hash_block(const char algo_name, const void data, unsigned int len,
	398	uint8_t output, int output_size)
	399	{
	400	struct hash_algo *algo;
	401	int ret;
	402
	403	ret = hash_lookup_algo(algo_name, &algo);
	404	if (ret)
	405	return ret;
	406
	407	if (output_size && *output_size < algo->digest_size) {
	408	debug("Output buffer size %d too small (need %d bytes)",
	409	*output_size, algo->digest_size);
	410	return -ENOSPC;
	411	}
	412	if (output_size)
	413	*output_size = algo->digest_size;
	414	algo->hash_func_ws(data, len, output, algo->chunk_size);
	415
	416	return 0;
	417	}
	418
1d6132e2	419	#if !defined(CONFIG_XPL_BUILD) && (defined(CONFIG_CMD_HASH) \|\| \
6ec3f920 IO	420	defined(CONFIG_CMD_SHA1SUM) \|\| defined(CONFIG_CMD_CRC32)) \|\| \
6ec3f920 IO	421	defined(CONFIG_CMD_MD5SUM)
460408ef SG	422	/**
	423	* store_result: Store the resulting sum to an address or variable
	424	*
	425	* @algo: Hash algorithm being used
	426	* @sum: Hash digest (algo->digest_size bytes)
	427	* @dest: Destination, interpreted as a hex address if it starts
d5b76673 SG	428	* with * (or allow_env_vars is 0) or otherwise as an
	429	* environment variable.
	430	* @allow_env_vars: non-zero to permit storing the result to an
	431	* variable environment
460408ef	432	*/
04819a4f	433	static void store_result(struct hash_algo algo, const uint8_t sum,
d5b76673	434	const char *dest, int allow_env_vars)
460408ef SG	435	{
460408ef SG	436	unsigned int i;
d5b76673	437	int env_var = 0;
460408ef	438
d5b76673 SG	439	/*
	440	* If environment variables are allowed, then we assume that 'dest'
	441	* is an environment variable, unless it starts with *, in which
	442	* case we assume it is an address. If not allowed, it is always an
	443	* address. This is to support the crc32 command.
	444	*/
	445	if (allow_env_vars) {
	446	if (dest == '')
	447	dest++;
	448	else
	449	env_var = 1;
	450	}
460408ef	451
d5b76673	452	if (env_var) {
460408ef SG	453	char str_output[HASH_MAX_DIGEST_SIZE * 2 + 1];
	454	char *str_ptr = str_output;
	455
	456	for (i = 0; i < algo->digest_size; i++) {
	457	sprintf(str_ptr, "%02x", sum[i]);
	458	str_ptr += 2;
	459	}
8b9cc866	460	*str_ptr = '\0';
382bee57	461	env_set(dest, str_output);
d5b76673	462	} else {
bd091b67 SG	463	ulong addr;
bd091b67 SG	464	void *buf;
d5b76673	465
7e5f460e	466	addr = hextoul(dest, NULL);
bd091b67 SG	467	buf = map_sysmem(addr, algo->digest_size);
	468	memcpy(buf, sum, algo->digest_size);
	469	unmap_sysmem(buf);
460408ef SG	470	}
	471	}
	472
	473	/**
	474	* parse_verify_sum: Parse a hash verification parameter
	475	*
	476	* @algo: Hash algorithm being used
	477	* @verify_str: Argument to parse. If it starts with * then it is
	478	* interpreted as a hex address containing the hash.
	479	* If the length is exactly the right number of hex digits
	480	* for the digest size, then we assume it is a hex digest.
	481	* Otherwise we assume it is an environment variable, and
	482	* look up its value (it must contain a hex digest).
	483	* @vsum: Returns binary digest value (algo->digest_size bytes)
d5b76673 SG	484	* @allow_env_vars: non-zero to permit storing the result to an environment
	485	* variable. If 0 then verify_str is assumed to be an
	486	* address, and the * prefix is not expected.
185f812c	487	* Return: 0 if ok, non-zero on error
460408ef	488	*/
04819a4f SG	489	static int parse_verify_sum(struct hash_algo algo, char verify_str,
04819a4f SG	490	uint8_t *vsum, int allow_env_vars)
460408ef	491	{
d5b76673 SG	492	int env_var = 0;
	493
	494	/* See comment above in store_result() */
	495	if (allow_env_vars) {
	496	if (verify_str == '')
	497	verify_str++;
	498	else
	499	env_var = 1;
	500	}
	501
3ef46a99	502	if (!env_var) {
bd091b67 SG	503	ulong addr;
bd091b67 SG	504	void *buf;
460408ef	505
7e5f460e	506	addr = hextoul(verify_str, NULL);
bd091b67 SG	507	buf = map_sysmem(addr, algo->digest_size);
bd091b67 SG	508	memcpy(vsum, buf, algo->digest_size);
460408ef	509	} else {
460408ef SG	510	char *vsum_str;
	511	int digits = algo->digest_size * 2;
	512
	513	/*
	514	* As with the original code from sha1sum.c, we assume that a
	515	* string which matches the digest size exactly is a hex
	516	* string and not an environment variable.
	517	*/
	518	if (strlen(verify_str) == digits)
	519	vsum_str = verify_str;
	520	else {
00caae6d	521	vsum_str = env_get(verify_str);
460408ef SG	522	if (vsum_str == NULL \|\| strlen(vsum_str) != digits) {
	523	printf("Expected %d hex digits in env var\n",
	524	digits);
	525	return 1;
	526	}
	527	}
	528
8f0b1e24	529	hash_parse_string(algo->name, vsum_str, vsum);
460408ef SG	530	}
	531	return 0;
	532	}
	533
48ad68de	534	static void hash_show(struct hash_algo algo, ulong addr, ulong len, uint8_t output)
460408ef SG	535	{
	536	int i;
	537
	538	printf("%s for %08lx ... %08lx ==> ", algo->name, addr, addr + len - 1);
	539	for (i = 0; i < algo->digest_size; i++)
	540	printf("%02x", output[i]);
	541	}
	542
09140113 SG	543	int hash_command(const char algo_name, int flags, struct cmd_tbl cmdtp,
09140113 SG	544	int flag, int argc, char *const argv[])
460408ef	545	{
460408ef	546	ulong addr, len;
460408ef	547
3ef46a99	548	if ((argc < 2) \|\| ((flags & HASH_FLAG_VERIFY) && (argc < 3)))
460408ef SG	549	return CMD_RET_USAGE;
460408ef SG	550
7e5f460e SG	551	addr = hextoul(*argv++, NULL);
7e5f460e SG	552	len = hextoul(*argv++, NULL);
d5b76673	553
d20a40de SG	554	if (multi_hash()) {
d20a40de SG	555	struct hash_algo *algo;
d7af2baa	556	u8 *output;
04819a4f	557	uint8_t vsum[HASH_MAX_DIGEST_SIZE];
bd091b67	558	void *buf;
460408ef	559
bf007ebb	560	if (hash_lookup_algo(algo_name, &algo)) {
d20a40de SG	561	printf("Unknown hash algorithm '%s'\n", algo_name);
	562	return CMD_RET_USAGE;
	563	}
	564	argc -= 2;
	565
	566	if (algo->digest_size > HASH_MAX_DIGEST_SIZE) {
	567	puts("HASH_MAX_DIGEST_SIZE exceeded\n");
	568	return 1;
	569	}
460408ef	570
d7af2baa BL	571	output = memalign(ARCH_DMA_MINALIGN,
d7af2baa BL	572	sizeof(uint32_t) * HASH_MAX_DIGEST_SIZE);
497e3a89 SA	573	if (!output)
497e3a89 SA	574	return CMD_RET_FAILURE;
d7af2baa	575
bd091b67 SG	576	buf = map_sysmem(addr, len);
	577	algo->hash_func_ws(buf, len, output, algo->chunk_size);
	578	unmap_sysmem(buf);
460408ef	579
d20a40de	580	/* Try to avoid code bloat when verify is not needed */
221a949e	581	#if defined(CONFIG_CRC32_VERIFY) \|\| defined(CONFIG_SHA1SUM_VERIFY) \|\| \
6ec3f920	582	defined(CONFIG_MD5SUM_VERIFY) \|\| defined(CONFIG_HASH_VERIFY)
d20a40de	583	if (flags & HASH_FLAG_VERIFY) {
460408ef	584	#else
d20a40de	585	if (0) {
460408ef	586	#endif
d20a40de	587	if (parse_verify_sum(algo, *argv, vsum,
d5b76673	588	flags & HASH_FLAG_ENV)) {
d20a40de SG	589	printf("ERROR: %s does not contain a valid "
d20a40de SG	590	"%s sum\n", *argv, algo->name);
497e3a89	591	free(output);
d20a40de SG	592	return 1;
	593	}
	594	if (memcmp(output, vsum, algo->digest_size) != 0) {
	595	int i;
460408ef	596
31890ae2	597	hash_show(algo, addr, len, output);
d20a40de SG	598	printf(" != ");
	599	for (i = 0; i < algo->digest_size; i++)
	600	printf("%02x", vsum[i]);
	601	puts(" ERROR \n");
497e3a89	602	free(output);
d20a40de SG	603	return 1;
	604	}
	605	} else {
31890ae2	606	hash_show(algo, addr, len, output);
d20a40de SG	607	printf("\n");
	608
	609	if (argc) {
	610	store_result(algo, output, *argv,
	611	flags & HASH_FLAG_ENV);
	612	}
460408ef	613	}
d20a40de	614
497e3a89 SA	615	free(output);
497e3a89 SA	616
d20a40de	617	/* Horrible code size hack for boards that just want crc32 */
460408ef	618	} else {
d20a40de SG	619	ulong crc;
	620	ulong *ptr;
	621
	622	crc = crc32_wd(0, (const uchar *)addr, len, CHUNKSZ_CRC32);
	623
	624	printf("CRC32 for %08lx ... %08lx ==> %08lx\n",
	625	addr, addr + len - 1, crc);
460408ef	626
4b756b01	627	if (argc >= 3) {
7e5f460e	628	ptr = (ulong *)hextoul(argv[0], NULL);
d20a40de	629	*ptr = crc;
d5b76673	630	}
460408ef SG	631	}
	632
	633	return 0;
	634	}
d70f919e SG	635	#endif /* CONFIG_CMD_HASH \|\| CONFIG_CMD_SHA1SUM \|\| CONFIG_CMD_CRC32) */
d70f919e SG	636	#endif /* !USE_HOSTCC */