1 /* SPDX-License-Identifier: BSD-3-Clause 2 * Copyright(c) 2018 Intel Corporation 3 */ 4 5 #include <ctype.h> 6 #include <stdio.h> 7 #include <stdlib.h> 8 #include <string.h> 9 10 #include <rte_string_fns.h> 11 #include <rte_cryptodev.h> 12 #include <rte_malloc.h> 13 14 #include "fips_validation.h" 15 16 #define skip_white_spaces(pos) \ 17 ({ \ 18 __typeof__(pos) _p = (pos); \ 19 for ( ; isspace(*_p); _p++) \ 20 ; \ 21 _p; \ 22 }) 23 24 static int 25 get_file_line(void) 26 { 27 FILE *fp = info.fp_rd; 28 char *line = info.one_line_text; 29 int ret; 30 uint32_t loc = 0; 31 32 memset(line, 0, MAX_LINE_CHAR); 33 while ((ret = fgetc(fp)) != EOF) { 34 char c = (char)ret; 35 36 if (loc >= MAX_LINE_CHAR - 1) 37 return -ENOMEM; 38 if (c == '\n') 39 break; 40 line[loc++] = c; 41 } 42 43 if (ret == EOF) 44 return -EOF; 45 46 return 0; 47 } 48 49 int 50 fips_test_fetch_one_block(void) 51 { 52 size_t size; 53 int ret = 0; 54 uint32_t i; 55 56 for (i = 0; i < info.nb_vec_lines; i++) { 57 free(info.vec[i]); 58 info.vec[i] = NULL; 59 } 60 61 i = 0; 62 do { 63 if (i >= MAX_LINE_PER_VECTOR) { 64 ret = -ENOMEM; 65 goto error_exit; 66 } 67 68 ret = get_file_line(); 69 size = strlen(info.one_line_text); 70 if (size == 0) 71 break; 72 73 info.vec[i] = calloc(1, size + 5); 74 if (info.vec[i] == NULL) 75 goto error_exit; 76 77 strlcpy(info.vec[i], info.one_line_text, size + 1); 78 i++; 79 } while (ret == 0); 80 81 info.nb_vec_lines = i; 82 83 return ret; 84 85 error_exit: 86 for (i = 0; i < MAX_LINE_PER_VECTOR; i++) 87 if (info.vec[i] != NULL) { 88 free(info.vec[i]); 89 info.vec[i] = NULL; 90 } 91 92 info.nb_vec_lines = 0; 93 94 return -ENOMEM; 95 } 96 97 static void 98 fips_test_parse_version(void) 99 { 100 int len = strlen(info.vec[0]); 101 char *ptr = info.vec[0]; 102 103 info.version = strtof(ptr + len - 4, NULL); 104 } 105 106 static int 107 fips_test_parse_header(void) 108 { 109 uint32_t i; 110 char *tmp; 111 int ret; 112 int algo_parsed = 0; 113 time_t t = time(NULL); 114 struct tm *tm_now = localtime(&t); 115 116 ret = fips_test_fetch_one_block(); 117 if (ret < 0) 118 return ret; 119 120 if (info.nb_vec_lines) 121 fips_test_parse_version(); 122 123 for (i = 0; i < info.nb_vec_lines; i++) { 124 if (!algo_parsed) { 125 if (strstr(info.vec[i], "AES")) { 126 algo_parsed = 1; 127 info.algo = FIPS_TEST_ALGO_AES; 128 ret = parse_test_aes_init(); 129 if (ret < 0) 130 return ret; 131 } else if (strstr(info.vec[i], "GCM")) { 132 algo_parsed = 1; 133 info.algo = FIPS_TEST_ALGO_AES_GCM; 134 ret = parse_test_gcm_init(); 135 if (ret < 0) 136 return ret; 137 } else if (strstr(info.vec[i], "CMAC")) { 138 algo_parsed = 1; 139 info.algo = FIPS_TEST_ALGO_AES_CMAC; 140 ret = parse_test_cmac_init(); 141 if (ret < 0) 142 return 0; 143 } else if (strstr(info.vec[i], "CCM")) { 144 algo_parsed = 1; 145 info.algo = FIPS_TEST_ALGO_AES_CCM; 146 ret = parse_test_ccm_init(); 147 if (ret < 0) 148 return 0; 149 } else if (strstr(info.vec[i], "HMAC")) { 150 algo_parsed = 1; 151 info.algo = FIPS_TEST_ALGO_HMAC; 152 ret = parse_test_hmac_init(); 153 if (ret < 0) 154 return ret; 155 } else if (strstr(info.vec[i], "TDES")) { 156 algo_parsed = 1; 157 info.algo = FIPS_TEST_ALGO_TDES; 158 ret = parse_test_tdes_init(); 159 if (ret < 0) 160 return 0; 161 } else if (strstr(info.vec[i], "PERMUTATION")) { 162 algo_parsed = 1; 163 info.algo = FIPS_TEST_ALGO_TDES; 164 ret = parse_test_tdes_init(); 165 if (ret < 0) 166 return 0; 167 } else if (strstr(info.vec[i], "VARIABLE")) { 168 algo_parsed = 1; 169 info.algo = FIPS_TEST_ALGO_TDES; 170 ret = parse_test_tdes_init(); 171 if (ret < 0) 172 return 0; 173 } else if (strstr(info.vec[i], "SUBSTITUTION")) { 174 algo_parsed = 1; 175 info.algo = FIPS_TEST_ALGO_TDES; 176 ret = parse_test_tdes_init(); 177 if (ret < 0) 178 return 0; 179 } else if (strstr(info.vec[i], "SHA-")) { 180 algo_parsed = 1; 181 info.algo = FIPS_TEST_ALGO_SHA; 182 ret = parse_test_sha_init(); 183 if (ret < 0) 184 return ret; 185 } else if (strstr(info.vec[i], "XTS")) { 186 algo_parsed = 1; 187 info.algo = FIPS_TEST_ALGO_AES_XTS; 188 ret = parse_test_xts_init(); 189 if (ret < 0) 190 return ret; 191 } 192 } 193 194 tmp = strstr(info.vec[i], "# Config info for "); 195 if (tmp != NULL) { 196 fprintf(info.fp_wr, "%s%s\n", "# Config info for DPDK Cryptodev ", 197 info.device_name); 198 continue; 199 } 200 201 tmp = strstr(info.vec[i], "# HMAC information for "); 202 if (tmp != NULL) { 203 fprintf(info.fp_wr, "%s%s\n", "# HMAC information for " 204 "DPDK Cryptodev ", 205 info.device_name); 206 continue; 207 } 208 209 tmp = strstr(info.vec[i], "# Config Info for : "); 210 if (tmp != NULL) { 211 212 fprintf(info.fp_wr, "%s%s\n", "# Config Info for DPDK Cryptodev : ", 213 info.device_name); 214 continue; 215 } 216 217 tmp = strstr(info.vec[i], "# information for "); 218 if (tmp != NULL) { 219 220 char tmp_output[128] = {0}; 221 222 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 223 224 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 225 "information for DPDK Cryptodev ", 226 info.device_name); 227 continue; 228 } 229 230 tmp = strstr(info.vec[i], " test information for "); 231 if (tmp != NULL) { 232 char tmp_output[128] = {0}; 233 234 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 235 236 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 237 "test information for DPDK Cryptodev ", 238 info.device_name); 239 continue; 240 } 241 242 tmp = strstr(info.vec[i], "\" information for \""); 243 if (tmp != NULL) { 244 char tmp_output[128] = {0}; 245 246 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 247 248 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 249 "\" information for DPDK Cryptodev ", 250 info.device_name); 251 continue; 252 } 253 254 if (i == info.nb_vec_lines - 1) { 255 /** update the time as current time, write to file */ 256 fprintf(info.fp_wr, "%s%s\n", "# Generated on ", 257 asctime(tm_now)); 258 continue; 259 } 260 261 /* to this point, no field need to update, 262 * only copy to rsp file 263 */ 264 fprintf(info.fp_wr, "%s\n", info.vec[i]); 265 } 266 267 return 0; 268 } 269 270 static int 271 parse_file_type(const char *path) 272 { 273 const char *tmp = path + strlen(path) - 3; 274 275 if (strstr(tmp, REQ_FILE_PREFIX)) 276 info.file_type = FIPS_TYPE_REQ; 277 else if (strstr(tmp, RSP_FILE_PREFIX)) 278 info.file_type = FIPS_TYPE_RSP; 279 else if (strstr(path, FAX_FILE_PREFIX)) 280 info.file_type = FIPS_TYPE_FAX; 281 else if (strstr(path, JSON_FILE_PREFIX)) 282 info.file_type = FIPS_TYPE_JSON; 283 else 284 return -EINVAL; 285 286 return 0; 287 } 288 289 int 290 fips_test_init(const char *req_file_path, const char *rsp_file_path, 291 const char *device_name) 292 { 293 if (strcmp(req_file_path, rsp_file_path) == 0) { 294 RTE_LOG(ERR, USER1, "File paths cannot be the same\n"); 295 return -EINVAL; 296 } 297 298 fips_test_clear(); 299 300 if (rte_strscpy(info.file_name, req_file_path, 301 sizeof(info.file_name)) < 0) { 302 RTE_LOG(ERR, USER1, "Path %s too long\n", req_file_path); 303 return -EINVAL; 304 } 305 info.algo = FIPS_TEST_ALGO_MAX; 306 if (parse_file_type(req_file_path) < 0) { 307 RTE_LOG(ERR, USER1, "File %s type not supported\n", 308 req_file_path); 309 return -EINVAL; 310 } 311 312 info.fp_rd = fopen(req_file_path, "r"); 313 if (!info.fp_rd) { 314 RTE_LOG(ERR, USER1, "Cannot open file %s\n", req_file_path); 315 return -EINVAL; 316 } 317 318 if (info.file_type == FIPS_TYPE_JSON) { 319 #ifdef USE_JANSSON 320 json_error_t error; 321 json_info.json_root = json_loadf(info.fp_rd, 0, &error); 322 if (!json_info.json_root) { 323 RTE_LOG(ERR, USER1, "Cannot parse json file %s (line %d, column %d)\n", 324 req_file_path, error.line, error.column); 325 return -EINVAL; 326 } 327 #else /* USE_JANSSON */ 328 RTE_LOG(ERR, USER1, "No json library configured.\n"); 329 return -EINVAL; 330 #endif /* USE_JANSSON */ 331 } 332 333 info.fp_wr = fopen(rsp_file_path, "w"); 334 if (!info.fp_wr) { 335 RTE_LOG(ERR, USER1, "Cannot open file %s\n", rsp_file_path); 336 return -EINVAL; 337 } 338 339 info.one_line_text = calloc(1, MAX_LINE_CHAR); 340 if (!info.one_line_text) { 341 RTE_LOG(ERR, USER1, "Insufficient memory\n"); 342 return -ENOMEM; 343 } 344 345 if (rte_strscpy(info.device_name, device_name, 346 sizeof(info.device_name)) < 0) { 347 RTE_LOG(ERR, USER1, "Device name %s too long\n", device_name); 348 return -EINVAL; 349 } 350 351 if (info.file_type == FIPS_TYPE_JSON) 352 return 0; 353 354 if (fips_test_parse_header() < 0) { 355 RTE_LOG(ERR, USER1, "Failed parsing header\n"); 356 return -1; 357 } 358 359 return 0; 360 } 361 362 void 363 fips_test_clear(void) 364 { 365 if (info.fp_rd) 366 fclose(info.fp_rd); 367 if (info.fp_wr) 368 fclose(info.fp_wr); 369 free(info.one_line_text); 370 if (info.nb_vec_lines) { 371 uint32_t i; 372 373 for (i = 0; i < info.nb_vec_lines; i++) 374 free(info.vec[i]); 375 } 376 377 memset(&info, 0, sizeof(info)); 378 } 379 380 int 381 fips_test_parse_one_case(void) 382 { 383 uint32_t i, j = 0; 384 uint32_t is_interim; 385 uint32_t interim_cnt = 0; 386 int ret; 387 388 info.vec_start_off = 0; 389 390 if (info.interim_callbacks) { 391 for (i = 0; i < info.nb_vec_lines; i++) { 392 is_interim = 0; 393 for (j = 0; info.interim_callbacks[j].key != NULL; j++) 394 if (strstr(info.vec[i], 395 info.interim_callbacks[j].key)) { 396 is_interim = 1; 397 398 ret = info.interim_callbacks[j].cb( 399 info.interim_callbacks[j].key, 400 info.vec[i], 401 info.interim_callbacks[j].val); 402 if (ret < 0) 403 return ret; 404 } 405 406 if (is_interim) 407 interim_cnt += 1; 408 } 409 } 410 411 if (interim_cnt) { 412 if (info.version == 21.4f) { 413 for (i = 0; i < interim_cnt; i++) 414 fprintf(info.fp_wr, "%s\n", info.vec[i]); 415 fprintf(info.fp_wr, "\n"); 416 417 if (info.nb_vec_lines == interim_cnt) 418 return 1; 419 } else { 420 for (i = 0; i < info.nb_vec_lines; i++) 421 fprintf(info.fp_wr, "%s\n", info.vec[i]); 422 fprintf(info.fp_wr, "\n"); 423 return 1; 424 } 425 } 426 427 info.vec_start_off = interim_cnt; 428 429 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) { 430 for (j = 0; info.callbacks[j].key != NULL; j++) 431 if (strstr(info.vec[i], info.callbacks[j].key)) { 432 ret = info.callbacks[j].cb( 433 info.callbacks[j].key, 434 info.vec[i], info.callbacks[j].val); 435 if (ret < 0) 436 return ret; 437 break; 438 } 439 } 440 441 return 0; 442 } 443 444 void 445 fips_test_write_one_case(void) 446 { 447 uint32_t i; 448 449 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) 450 fprintf(info.fp_wr, "%s\n", info.vec[i]); 451 } 452 453 #ifdef USE_JANSSON 454 int 455 fips_test_parse_one_json_vector_set(void) 456 { 457 json_t *algo_obj = json_object_get(json_info.json_vector_set, "algorithm"); 458 const char *algo_str = json_string_value(algo_obj); 459 460 /* Vector sets contain the algorithm type, and nothing else we need. */ 461 if (strstr(algo_str, "AES-GCM")) 462 info.algo = FIPS_TEST_ALGO_AES_GCM; 463 else if (strstr(algo_str, "HMAC")) 464 info.algo = FIPS_TEST_ALGO_HMAC; 465 else if (strstr(algo_str, "CMAC")) 466 info.algo = FIPS_TEST_ALGO_AES_CMAC; 467 else if (strstr(algo_str, "AES-CBC")) 468 info.algo = FIPS_TEST_ALGO_AES_CBC; 469 else if (strstr(algo_str, "AES-XTS")) 470 info.algo = FIPS_TEST_ALGO_AES_XTS; 471 else if (strstr(algo_str, "SHA")) 472 info.algo = FIPS_TEST_ALGO_SHA; 473 else 474 return -EINVAL; 475 476 return 0; 477 } 478 479 int 480 fips_test_parse_one_json_group(void) 481 { 482 int ret, i; 483 json_t *param; 484 485 if (info.interim_callbacks) { 486 char json_value[256]; 487 for (i = 0; info.interim_callbacks[i].key != NULL; i++) { 488 param = json_object_get(json_info.json_test_group, 489 info.interim_callbacks[i].key); 490 switch (json_typeof(param)) { 491 case JSON_STRING: 492 snprintf(json_value, 256, "%s", json_string_value(param)); 493 break; 494 495 case JSON_INTEGER: 496 snprintf(json_value, 255, "%"JSON_INTEGER_FORMAT, 497 json_integer_value(param)); 498 break; 499 500 default: 501 return -EINVAL; 502 } 503 504 ret = info.interim_callbacks[i].cb( 505 info.interim_callbacks[i].key, json_value, 506 info.interim_callbacks[i].val 507 ); 508 if (ret < 0) 509 return ret; 510 } 511 } 512 513 return 0; 514 } 515 516 int 517 fips_test_parse_one_json_case(void) 518 { 519 uint32_t i; 520 int ret = 0; 521 json_t *param; 522 523 for (i = 0; info.callbacks[i].key != NULL; i++) { 524 param = json_object_get(json_info.json_test_case, info.callbacks[i].key); 525 if (param) { 526 strcpy(info.one_line_text, json_string_value(param)); 527 ret = info.callbacks[i].cb( 528 info.callbacks[i].key, info.one_line_text, 529 info.callbacks[i].val 530 ); 531 if (ret < 0) 532 return ret; 533 } 534 } 535 536 return 0; 537 } 538 #endif /* USE_JANSSON */ 539 540 static int 541 parser_read_uint64_hex(uint64_t *value, const char *p) 542 { 543 char *next; 544 uint64_t val; 545 546 p = skip_white_spaces(p); 547 548 val = strtoul(p, &next, 16); 549 if (p == next) 550 return -EINVAL; 551 552 p = skip_white_spaces(next); 553 if (*p != '\0') 554 return -EINVAL; 555 556 *value = val; 557 return 0; 558 } 559 560 int 561 parser_read_uint8_hex(uint8_t *value, const char *p) 562 { 563 uint64_t val = 0; 564 int ret = parser_read_uint64_hex(&val, p); 565 566 if (ret < 0) 567 return ret; 568 569 if (val > UINT8_MAX) 570 return -ERANGE; 571 572 *value = val; 573 return 0; 574 } 575 576 int 577 parse_uint8_known_len_hex_str(const char *key, char *src, struct fips_val *val) 578 { 579 struct fips_val tmp_val = {0}; 580 uint32_t len = val->len; 581 int ret; 582 583 if (len == 0) { 584 if (val->val != NULL) { 585 rte_free(val->val); 586 val->val = NULL; 587 } 588 589 return 0; 590 } 591 592 ret = parse_uint8_hex_str(key, src, &tmp_val); 593 if (ret < 0) 594 return ret; 595 596 if (tmp_val.len == val->len) { 597 val->val = tmp_val.val; 598 return 0; 599 } 600 601 if (tmp_val.len < val->len) { 602 rte_free(tmp_val.val); 603 return -EINVAL; 604 } 605 606 val->val = rte_zmalloc(NULL, val->len, 0); 607 if (!val->val) { 608 rte_free(tmp_val.val); 609 memset(val, 0, sizeof(*val)); 610 return -ENOMEM; 611 } 612 613 memcpy(val->val, tmp_val.val, val->len); 614 rte_free(tmp_val.val); 615 616 return 0; 617 } 618 619 int 620 parse_uint8_hex_str(const char *key, char *src, struct fips_val *val) 621 { 622 uint32_t len, j; 623 624 #ifdef USE_JANSSON 625 /* 626 * Offset not applicable in case of JSON test vectors. 627 */ 628 RTE_SET_USED(key); 629 #else 630 src += strlen(key); 631 #endif 632 633 len = strlen(src) / 2; 634 635 if (val->val) { 636 rte_free(val->val); 637 val->val = NULL; 638 } 639 640 val->val = rte_zmalloc(NULL, len + 1, 0); 641 if (!val->val) 642 return -ENOMEM; 643 644 for (j = 0; j < len; j++) { 645 char byte[3] = {src[j * 2], src[j * 2 + 1], '\0'}; 646 647 if (parser_read_uint8_hex(&val->val[j], byte) < 0) { 648 rte_free(val->val); 649 memset(val, 0, sizeof(*val)); 650 return -EINVAL; 651 } 652 } 653 654 val->len = len; 655 656 return 0; 657 } 658 659 #ifdef USE_JANSSON 660 int 661 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 662 { 663 RTE_SET_USED(key); 664 665 return parser_read_uint32(&val->len, src); 666 } 667 #else 668 int 669 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 670 { 671 char *data = src + strlen(key); 672 size_t data_len = strlen(data); 673 int ret; 674 675 if (data[data_len - 1] == ']') { 676 char *tmp_data = calloc(1, data_len + 1); 677 678 if (tmp_data == NULL) 679 return -ENOMEM; 680 681 strlcpy(tmp_data, data, data_len); 682 683 ret = parser_read_uint32(&val->len, tmp_data); 684 685 free(tmp_data); 686 } else 687 ret = parser_read_uint32(&val->len, data); 688 689 return ret; 690 } 691 #endif 692 693 int 694 parser_read_uint32_bit_val(const char *key, char *src, struct fips_val *val) 695 { 696 int ret; 697 698 ret = parser_read_uint32_val(key, src, val); 699 700 if (ret < 0) 701 return ret; 702 703 val->len /= 8; 704 705 return 0; 706 } 707 708 int 709 writeback_hex_str(const char *key, char *dst, struct fips_val *val) 710 { 711 char *str = dst; 712 uint32_t len; 713 714 str += strlen(key); 715 716 for (len = 0; len < val->len; len++) 717 snprintf(str + len * 2, 255, "%02x", val->val[len]); 718 719 return 0; 720 } 721 722 static int 723 parser_read_uint64(uint64_t *value, const char *p) 724 { 725 char *next; 726 uint64_t val; 727 728 p = skip_white_spaces(p); 729 if (!isdigit(*p)) 730 return -EINVAL; 731 732 val = strtoul(p, &next, 10); 733 if (p == next) 734 return -EINVAL; 735 736 p = next; 737 switch (*p) { 738 case 'T': 739 val *= 1024ULL; 740 /* fall through */ 741 case 'G': 742 val *= 1024ULL; 743 /* fall through */ 744 case 'M': 745 val *= 1024ULL; 746 /* fall through */ 747 case 'k': 748 case 'K': 749 val *= 1024ULL; 750 p++; 751 break; 752 } 753 754 p = skip_white_spaces(p); 755 if (*p != '\0') 756 return -EINVAL; 757 758 *value = val; 759 return 0; 760 } 761 762 int 763 parser_read_uint32(uint32_t *value, char *p) 764 { 765 uint64_t val = 0; 766 int ret = parser_read_uint64(&val, p); 767 768 if (ret < 0) 769 return ret; 770 771 if (val > UINT32_MAX) 772 return -EINVAL; 773 774 *value = val; 775 return 0; 776 } 777 778 int 779 parser_read_uint16(uint16_t *value, const char *p) 780 { 781 uint64_t val = 0; 782 int ret = parser_read_uint64(&val, p); 783 784 if (ret < 0) 785 return ret; 786 787 if (val > UINT16_MAX) 788 return -ERANGE; 789 790 *value = val; 791 return 0; 792 } 793 794 void 795 parse_write_hex_str(struct fips_val *src) 796 { 797 writeback_hex_str("", info.one_line_text, src); 798 799 fprintf(info.fp_wr, "%s\n", info.one_line_text); 800 } 801 802 int 803 update_info_vec(uint32_t count) 804 { 805 const struct fips_test_callback *cb; 806 uint32_t i, j; 807 808 if (!info.writeback_callbacks) 809 return -1; 810 811 cb = &info.writeback_callbacks[0]; 812 813 if ((info.version == 21.4f) && (!(strstr(info.vec[0], cb->key)))) { 814 fprintf(info.fp_wr, "%s%u\n", cb->key, count); 815 i = 0; 816 } else { 817 snprintf(info.vec[0], strlen(info.vec[0]) + 4, "%s%u", cb->key, 818 count); 819 i = 1; 820 } 821 822 for (; i < info.nb_vec_lines; i++) { 823 for (j = 1; info.writeback_callbacks[j].key != NULL; j++) { 824 cb = &info.writeback_callbacks[j]; 825 if (strstr(info.vec[i], cb->key)) { 826 cb->cb(cb->key, info.vec[i], cb->val); 827 break; 828 } 829 } 830 } 831 832 return 0; 833 } 834