2 * Copyright (c) 2012 The Chromium OS Authors.
5 * Joe Hershberger, National Instruments, joe.hershberger@ni.com
8 * Wolfgang Denk, DENX Software Engineering, wd@denx.de.
10 * SPDX-License-Identifier: GPL-2.0+
20 #include <linux/errno.h>
25 #endif /* !USE_HOSTCC*/
28 #include <u-boot/crc.h>
29 #include <u-boot/sha1.h>
30 #include <u-boot/sha256.h>
31 #include <u-boot/md5.h>
34 static int hash_init_sha1(struct hash_algo *algo, void **ctxp)
36 sha1_context *ctx = malloc(sizeof(sha1_context));
42 static int hash_update_sha1(struct hash_algo *algo, void *ctx, const void *buf,
43 unsigned int size, int is_last)
45 sha1_update((sha1_context *)ctx, buf, size);
49 static int hash_finish_sha1(struct hash_algo *algo, void *ctx, void *dest_buf,
52 if (size < algo->digest_size)
55 sha1_finish((sha1_context *)ctx, dest_buf);
62 static int hash_init_sha256(struct hash_algo *algo, void **ctxp)
64 sha256_context *ctx = malloc(sizeof(sha256_context));
70 static int hash_update_sha256(struct hash_algo *algo, void *ctx,
71 const void *buf, unsigned int size, int is_last)
73 sha256_update((sha256_context *)ctx, buf, size);
77 static int hash_finish_sha256(struct hash_algo *algo, void *ctx, void
80 if (size < algo->digest_size)
83 sha256_finish((sha256_context *)ctx, dest_buf);
89 static int hash_init_crc32(struct hash_algo *algo, void **ctxp)
91 uint32_t *ctx = malloc(sizeof(uint32_t));
97 static int hash_update_crc32(struct hash_algo *algo, void *ctx,
98 const void *buf, unsigned int size, int is_last)
100 *((uint32_t *)ctx) = crc32(*((uint32_t *)ctx), buf, size);
104 static int hash_finish_crc32(struct hash_algo *algo, void *ctx, void *dest_buf,
107 if (size < algo->digest_size)
110 *((uint32_t *)dest_buf) = *((uint32_t *)ctx);
116 * These are the hash algorithms we support. Chips which support accelerated
117 * crypto could perhaps add named version of these algorithms here. Note that
118 * algorithm names must be in lower case.
120 static struct hash_algo hash_algo[] = {
122 * CONFIG_SHA_HW_ACCEL is defined if hardware acceleration is
125 #ifdef CONFIG_SHA_HW_ACCEL
131 #ifdef CONFIG_SHA_PROG_HW_ACCEL
141 #ifdef CONFIG_SHA_PROG_HW_ACCEL
181 /* Try to minimize code size for boards that don't want much hashing */
182 #if defined(CONFIG_SHA256) || defined(CONFIG_CMD_SHA1SUM) || \
183 defined(CONFIG_CRC32_VERIFY) || defined(CONFIG_CMD_HASH)
184 #define multi_hash() 1
186 #define multi_hash() 0
189 int hash_lookup_algo(const char *algo_name, struct hash_algo **algop)
193 for (i = 0; i < ARRAY_SIZE(hash_algo); i++) {
194 if (!strcmp(algo_name, hash_algo[i].name)) {
195 *algop = &hash_algo[i];
200 debug("Unknown hash algorithm '%s'\n", algo_name);
201 return -EPROTONOSUPPORT;
204 int hash_progressive_lookup_algo(const char *algo_name,
205 struct hash_algo **algop)
209 for (i = 0; i < ARRAY_SIZE(hash_algo); i++) {
210 if (!strcmp(algo_name, hash_algo[i].name)) {
211 if (hash_algo[i].hash_init) {
212 *algop = &hash_algo[i];
218 debug("Unknown hash algorithm '%s'\n", algo_name);
219 return -EPROTONOSUPPORT;
223 int hash_parse_string(const char *algo_name, const char *str, uint8_t *result)
225 struct hash_algo *algo;
229 ret = hash_lookup_algo(algo_name, &algo);
233 for (i = 0; i < algo->digest_size; i++) {
236 strncpy(chr, &str[i * 2], 2);
237 result[i] = simple_strtoul(chr, NULL, 16);
243 int hash_block(const char *algo_name, const void *data, unsigned int len,
244 uint8_t *output, int *output_size)
246 struct hash_algo *algo;
249 ret = hash_lookup_algo(algo_name, &algo);
253 if (output_size && *output_size < algo->digest_size) {
254 debug("Output buffer size %d too small (need %d bytes)",
255 *output_size, algo->digest_size);
259 *output_size = algo->digest_size;
260 algo->hash_func_ws(data, len, output, algo->chunk_size);
265 #if defined(CONFIG_CMD_HASH) || defined(CONFIG_CMD_SHA1SUM) || defined(CONFIG_CMD_CRC32)
267 * store_result: Store the resulting sum to an address or variable
269 * @algo: Hash algorithm being used
270 * @sum: Hash digest (algo->digest_size bytes)
271 * @dest: Destination, interpreted as a hex address if it starts
272 * with * (or allow_env_vars is 0) or otherwise as an
273 * environment variable.
274 * @allow_env_vars: non-zero to permit storing the result to an
275 * variable environment
277 static void store_result(struct hash_algo *algo, const uint8_t *sum,
278 const char *dest, int allow_env_vars)
284 * If environment variables are allowed, then we assume that 'dest'
285 * is an environment variable, unless it starts with *, in which
286 * case we assume it is an address. If not allowed, it is always an
287 * address. This is to support the crc32 command.
289 if (allow_env_vars) {
297 char str_output[HASH_MAX_DIGEST_SIZE * 2 + 1];
298 char *str_ptr = str_output;
300 for (i = 0; i < algo->digest_size; i++) {
301 sprintf(str_ptr, "%02x", sum[i]);
305 env_set(dest, str_output);
310 addr = simple_strtoul(dest, NULL, 16);
311 buf = map_sysmem(addr, algo->digest_size);
312 memcpy(buf, sum, algo->digest_size);
318 * parse_verify_sum: Parse a hash verification parameter
320 * @algo: Hash algorithm being used
321 * @verify_str: Argument to parse. If it starts with * then it is
322 * interpreted as a hex address containing the hash.
323 * If the length is exactly the right number of hex digits
324 * for the digest size, then we assume it is a hex digest.
325 * Otherwise we assume it is an environment variable, and
326 * look up its value (it must contain a hex digest).
327 * @vsum: Returns binary digest value (algo->digest_size bytes)
328 * @allow_env_vars: non-zero to permit storing the result to an environment
329 * variable. If 0 then verify_str is assumed to be an
330 * address, and the * prefix is not expected.
331 * @return 0 if ok, non-zero on error
333 static int parse_verify_sum(struct hash_algo *algo, char *verify_str,
334 uint8_t *vsum, int allow_env_vars)
338 /* See comment above in store_result() */
339 if (allow_env_vars) {
340 if (*verify_str == '*')
350 addr = simple_strtoul(verify_str, NULL, 16);
351 buf = map_sysmem(addr, algo->digest_size);
352 memcpy(vsum, buf, algo->digest_size);
355 int digits = algo->digest_size * 2;
358 * As with the original code from sha1sum.c, we assume that a
359 * string which matches the digest size exactly is a hex
360 * string and not an environment variable.
362 if (strlen(verify_str) == digits)
363 vsum_str = verify_str;
365 vsum_str = env_get(verify_str);
366 if (vsum_str == NULL || strlen(vsum_str) != digits) {
367 printf("Expected %d hex digits in env var\n",
373 hash_parse_string(algo->name, vsum_str, vsum);
378 static void hash_show(struct hash_algo *algo, ulong addr, ulong len, uint8_t *output)
382 printf("%s for %08lx ... %08lx ==> ", algo->name, addr, addr + len - 1);
383 for (i = 0; i < algo->digest_size; i++)
384 printf("%02x", output[i]);
387 int hash_command(const char *algo_name, int flags, cmd_tbl_t *cmdtp, int flag,
388 int argc, char * const argv[])
392 if ((argc < 2) || ((flags & HASH_FLAG_VERIFY) && (argc < 3)))
393 return CMD_RET_USAGE;
395 addr = simple_strtoul(*argv++, NULL, 16);
396 len = simple_strtoul(*argv++, NULL, 16);
399 struct hash_algo *algo;
400 uint8_t output[HASH_MAX_DIGEST_SIZE];
401 uint8_t vsum[HASH_MAX_DIGEST_SIZE];
404 if (hash_lookup_algo(algo_name, &algo)) {
405 printf("Unknown hash algorithm '%s'\n", algo_name);
406 return CMD_RET_USAGE;
410 if (algo->digest_size > HASH_MAX_DIGEST_SIZE) {
411 puts("HASH_MAX_DIGEST_SIZE exceeded\n");
415 buf = map_sysmem(addr, len);
416 algo->hash_func_ws(buf, len, output, algo->chunk_size);
419 /* Try to avoid code bloat when verify is not needed */
420 #if defined(CONFIG_CRC32_VERIFY) || defined(CONFIG_SHA1SUM_VERIFY) || \
421 defined(CONFIG_HASH_VERIFY)
422 if (flags & HASH_FLAG_VERIFY) {
426 if (parse_verify_sum(algo, *argv, vsum,
427 flags & HASH_FLAG_ENV)) {
428 printf("ERROR: %s does not contain a valid "
429 "%s sum\n", *argv, algo->name);
432 if (memcmp(output, vsum, algo->digest_size) != 0) {
435 hash_show(algo, addr, len, output);
437 for (i = 0; i < algo->digest_size; i++)
438 printf("%02x", vsum[i]);
439 puts(" ** ERROR **\n");
443 hash_show(algo, addr, len, output);
447 store_result(algo, output, *argv,
448 flags & HASH_FLAG_ENV);
452 /* Horrible code size hack for boards that just want crc32 */
457 crc = crc32_wd(0, (const uchar *)addr, len, CHUNKSZ_CRC32);
459 printf("CRC32 for %08lx ... %08lx ==> %08lx\n",
460 addr, addr + len - 1, crc);
463 ptr = (ulong *)simple_strtoul(argv[0], NULL, 16);
470 #endif /* CONFIG_CMD_HASH || CONFIG_CMD_SHA1SUM || CONFIG_CMD_CRC32) */
471 #endif /* !USE_HOSTCC */