1 /* SPDX-License-Identifier: BSD-3-Clause 2 * Copyright(c) 2018 Intel Corporation 3 */ 4 5 #include <ctype.h> 6 #include <stdio.h> 7 #include <stdlib.h> 8 #include <string.h> 9 10 #include <rte_string_fns.h> 11 #include <rte_cryptodev.h> 12 #include <rte_malloc.h> 13 14 #include "fips_validation.h" 15 16 #define skip_white_spaces(pos) \ 17 ({ \ 18 __typeof__(pos) _p = (pos); \ 19 for ( ; isspace(*_p); _p++) \ 20 ; \ 21 _p; \ 22 }) 23 24 static int 25 get_file_line(void) 26 { 27 FILE *fp = info.fp_rd; 28 char *line = info.one_line_text; 29 int ret; 30 uint32_t loc = 0; 31 32 memset(line, 0, MAX_LINE_CHAR); 33 while ((ret = fgetc(fp)) != EOF) { 34 char c = (char)ret; 35 36 if (loc >= MAX_LINE_CHAR - 1) 37 return -ENOMEM; 38 if (c == '\n') 39 break; 40 line[loc++] = c; 41 } 42 43 if (ret == EOF) 44 return -EOF; 45 46 return 0; 47 } 48 49 int 50 fips_test_fetch_one_block(void) 51 { 52 size_t size; 53 int ret = 0; 54 uint32_t i; 55 56 for (i = 0; i < info.nb_vec_lines; i++) { 57 free(info.vec[i]); 58 info.vec[i] = NULL; 59 } 60 61 i = 0; 62 do { 63 if (i >= MAX_LINE_PER_VECTOR) { 64 ret = -ENOMEM; 65 goto error_exit; 66 } 67 68 ret = get_file_line(); 69 size = strlen(info.one_line_text); 70 if (size == 0) 71 break; 72 73 info.vec[i] = calloc(1, size + 5); 74 if (info.vec[i] == NULL) 75 goto error_exit; 76 77 strlcpy(info.vec[i], info.one_line_text, size + 1); 78 i++; 79 } while (ret == 0); 80 81 info.nb_vec_lines = i; 82 83 return ret; 84 85 error_exit: 86 for (i = 0; i < MAX_LINE_PER_VECTOR; i++) 87 if (info.vec[i] != NULL) { 88 free(info.vec[i]); 89 info.vec[i] = NULL; 90 } 91 92 info.nb_vec_lines = 0; 93 94 return -ENOMEM; 95 } 96 97 static void 98 fips_test_parse_version(void) 99 { 100 int len = strlen(info.vec[0]); 101 char *ptr = info.vec[0]; 102 103 info.version = strtof(ptr + len - 4, NULL); 104 } 105 106 static int 107 fips_test_parse_header(void) 108 { 109 uint32_t i; 110 char *tmp; 111 int ret; 112 int algo_parsed = 0; 113 time_t t = time(NULL); 114 struct tm *tm_now = localtime(&t); 115 116 ret = fips_test_fetch_one_block(); 117 if (ret < 0) 118 return ret; 119 120 if (info.nb_vec_lines) 121 fips_test_parse_version(); 122 123 for (i = 0; i < info.nb_vec_lines; i++) { 124 if (!algo_parsed) { 125 if (strstr(info.vec[i], "AES")) { 126 algo_parsed = 1; 127 info.algo = FIPS_TEST_ALGO_AES; 128 ret = parse_test_aes_init(); 129 if (ret < 0) 130 return ret; 131 } else if (strstr(info.vec[i], "GCM")) { 132 algo_parsed = 1; 133 info.algo = FIPS_TEST_ALGO_AES_GCM; 134 ret = parse_test_gcm_init(); 135 if (ret < 0) 136 return ret; 137 } else if (strstr(info.vec[i], "CMAC")) { 138 algo_parsed = 1; 139 info.algo = FIPS_TEST_ALGO_AES_CMAC; 140 ret = parse_test_cmac_init(); 141 if (ret < 0) 142 return 0; 143 } else if (strstr(info.vec[i], "CCM")) { 144 algo_parsed = 1; 145 info.algo = FIPS_TEST_ALGO_AES_CCM; 146 ret = parse_test_ccm_init(); 147 if (ret < 0) 148 return 0; 149 } else if (strstr(info.vec[i], "HMAC")) { 150 algo_parsed = 1; 151 info.algo = FIPS_TEST_ALGO_HMAC; 152 ret = parse_test_hmac_init(); 153 if (ret < 0) 154 return ret; 155 } else if (strstr(info.vec[i], "TDES")) { 156 algo_parsed = 1; 157 info.algo = FIPS_TEST_ALGO_TDES; 158 ret = parse_test_tdes_init(); 159 if (ret < 0) 160 return 0; 161 } else if (strstr(info.vec[i], "PERMUTATION")) { 162 algo_parsed = 1; 163 info.algo = FIPS_TEST_ALGO_TDES; 164 ret = parse_test_tdes_init(); 165 if (ret < 0) 166 return 0; 167 } else if (strstr(info.vec[i], "VARIABLE")) { 168 algo_parsed = 1; 169 info.algo = FIPS_TEST_ALGO_TDES; 170 ret = parse_test_tdes_init(); 171 if (ret < 0) 172 return 0; 173 } else if (strstr(info.vec[i], "SUBSTITUTION")) { 174 algo_parsed = 1; 175 info.algo = FIPS_TEST_ALGO_TDES; 176 ret = parse_test_tdes_init(); 177 if (ret < 0) 178 return 0; 179 } else if (strstr(info.vec[i], "SHA-")) { 180 algo_parsed = 1; 181 info.algo = FIPS_TEST_ALGO_SHA; 182 ret = parse_test_sha_init(); 183 if (ret < 0) 184 return ret; 185 } else if (strstr(info.vec[i], "XTS")) { 186 algo_parsed = 1; 187 info.algo = FIPS_TEST_ALGO_AES_XTS; 188 ret = parse_test_xts_init(); 189 if (ret < 0) 190 return ret; 191 } 192 } 193 194 tmp = strstr(info.vec[i], "# Config info for "); 195 if (tmp != NULL) { 196 fprintf(info.fp_wr, "%s%s\n", "# Config info for DPDK Cryptodev ", 197 info.device_name); 198 continue; 199 } 200 201 tmp = strstr(info.vec[i], "# HMAC information for "); 202 if (tmp != NULL) { 203 fprintf(info.fp_wr, "%s%s\n", "# HMAC information for " 204 "DPDK Cryptodev ", 205 info.device_name); 206 continue; 207 } 208 209 tmp = strstr(info.vec[i], "# Config Info for : "); 210 if (tmp != NULL) { 211 212 fprintf(info.fp_wr, "%s%s\n", "# Config Info for DPDK Cryptodev : ", 213 info.device_name); 214 continue; 215 } 216 217 tmp = strstr(info.vec[i], "# information for "); 218 if (tmp != NULL) { 219 220 char tmp_output[128] = {0}; 221 222 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 223 224 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 225 "information for DPDK Cryptodev ", 226 info.device_name); 227 continue; 228 } 229 230 tmp = strstr(info.vec[i], " test information for "); 231 if (tmp != NULL) { 232 char tmp_output[128] = {0}; 233 234 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 235 236 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 237 "test information for DPDK Cryptodev ", 238 info.device_name); 239 continue; 240 } 241 242 tmp = strstr(info.vec[i], "\" information for \""); 243 if (tmp != NULL) { 244 char tmp_output[128] = {0}; 245 246 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 247 248 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 249 "\" information for DPDK Cryptodev ", 250 info.device_name); 251 continue; 252 } 253 254 if (i == info.nb_vec_lines - 1) { 255 /** update the time as current time, write to file */ 256 fprintf(info.fp_wr, "%s%s\n", "# Generated on ", 257 asctime(tm_now)); 258 continue; 259 } 260 261 /* to this point, no field need to update, 262 * only copy to rsp file 263 */ 264 fprintf(info.fp_wr, "%s\n", info.vec[i]); 265 } 266 267 return 0; 268 } 269 270 static int 271 parse_file_type(const char *path) 272 { 273 const char *tmp = path + strlen(path) - 3; 274 275 if (strstr(tmp, REQ_FILE_PREFIX)) 276 info.file_type = FIPS_TYPE_REQ; 277 else if (strstr(tmp, RSP_FILE_PREFIX)) 278 info.file_type = FIPS_TYPE_RSP; 279 else if (strstr(path, FAX_FILE_PREFIX)) 280 info.file_type = FIPS_TYPE_FAX; 281 else if (strstr(path, JSON_FILE_PREFIX)) 282 info.file_type = FIPS_TYPE_JSON; 283 else 284 return -EINVAL; 285 286 return 0; 287 } 288 289 int 290 fips_test_init(const char *req_file_path, const char *rsp_file_path, 291 const char *device_name) 292 { 293 if (strcmp(req_file_path, rsp_file_path) == 0) { 294 RTE_LOG(ERR, USER1, "File paths cannot be the same\n"); 295 return -EINVAL; 296 } 297 298 fips_test_clear(); 299 300 if (rte_strscpy(info.file_name, req_file_path, 301 sizeof(info.file_name)) < 0) { 302 RTE_LOG(ERR, USER1, "Path %s too long\n", req_file_path); 303 return -EINVAL; 304 } 305 info.algo = FIPS_TEST_ALGO_MAX; 306 if (parse_file_type(req_file_path) < 0) { 307 RTE_LOG(ERR, USER1, "File %s type not supported\n", 308 req_file_path); 309 return -EINVAL; 310 } 311 312 info.fp_rd = fopen(req_file_path, "r"); 313 if (!info.fp_rd) { 314 RTE_LOG(ERR, USER1, "Cannot open file %s\n", req_file_path); 315 return -EINVAL; 316 } 317 318 if (info.file_type == FIPS_TYPE_JSON) { 319 #ifdef USE_JANSSON 320 json_error_t error; 321 json_info.json_root = json_loadf(info.fp_rd, 0, &error); 322 if (!json_info.json_root) { 323 RTE_LOG(ERR, USER1, "Cannot parse json file %s (line %d, column %d)\n", 324 req_file_path, error.line, error.column); 325 return -EINVAL; 326 } 327 #else /* USE_JANSSON */ 328 RTE_LOG(ERR, USER1, "No json library configured.\n"); 329 return -EINVAL; 330 #endif /* USE_JANSSON */ 331 } 332 333 info.fp_wr = fopen(rsp_file_path, "w"); 334 if (!info.fp_wr) { 335 RTE_LOG(ERR, USER1, "Cannot open file %s\n", rsp_file_path); 336 return -EINVAL; 337 } 338 339 info.one_line_text = calloc(1, MAX_LINE_CHAR); 340 if (!info.one_line_text) { 341 RTE_LOG(ERR, USER1, "Insufficient memory\n"); 342 return -ENOMEM; 343 } 344 345 if (rte_strscpy(info.device_name, device_name, 346 sizeof(info.device_name)) < 0) { 347 RTE_LOG(ERR, USER1, "Device name %s too long\n", device_name); 348 return -EINVAL; 349 } 350 351 if (info.file_type == FIPS_TYPE_JSON) 352 return 0; 353 354 if (fips_test_parse_header() < 0) { 355 RTE_LOG(ERR, USER1, "Failed parsing header\n"); 356 return -1; 357 } 358 359 return 0; 360 } 361 362 void 363 fips_test_clear(void) 364 { 365 if (info.fp_rd) 366 fclose(info.fp_rd); 367 if (info.fp_wr) 368 fclose(info.fp_wr); 369 free(info.one_line_text); 370 if (info.nb_vec_lines) { 371 uint32_t i; 372 373 for (i = 0; i < info.nb_vec_lines; i++) 374 free(info.vec[i]); 375 } 376 377 memset(&info, 0, sizeof(info)); 378 } 379 380 int 381 fips_test_parse_one_case(void) 382 { 383 uint32_t i, j = 0; 384 uint32_t is_interim; 385 uint32_t interim_cnt = 0; 386 int ret; 387 388 info.vec_start_off = 0; 389 390 if (info.interim_callbacks) { 391 for (i = 0; i < info.nb_vec_lines; i++) { 392 is_interim = 0; 393 for (j = 0; info.interim_callbacks[j].key != NULL; j++) 394 if (strstr(info.vec[i], 395 info.interim_callbacks[j].key)) { 396 is_interim = 1; 397 398 ret = info.interim_callbacks[j].cb( 399 info.interim_callbacks[j].key, 400 info.vec[i], 401 info.interim_callbacks[j].val); 402 if (ret < 0) 403 return ret; 404 } 405 406 if (is_interim) 407 interim_cnt += 1; 408 } 409 } 410 411 if (interim_cnt) { 412 if (info.version == 21.4f) { 413 for (i = 0; i < interim_cnt; i++) 414 fprintf(info.fp_wr, "%s\n", info.vec[i]); 415 fprintf(info.fp_wr, "\n"); 416 417 if (info.nb_vec_lines == interim_cnt) 418 return 1; 419 } else { 420 for (i = 0; i < info.nb_vec_lines; i++) 421 fprintf(info.fp_wr, "%s\n", info.vec[i]); 422 fprintf(info.fp_wr, "\n"); 423 return 1; 424 } 425 } 426 427 info.vec_start_off = interim_cnt; 428 429 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) { 430 for (j = 0; info.callbacks[j].key != NULL; j++) 431 if (strstr(info.vec[i], info.callbacks[j].key)) { 432 ret = info.callbacks[j].cb( 433 info.callbacks[j].key, 434 info.vec[i], info.callbacks[j].val); 435 if (ret < 0) 436 return ret; 437 break; 438 } 439 } 440 441 return 0; 442 } 443 444 void 445 fips_test_write_one_case(void) 446 { 447 uint32_t i; 448 449 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) 450 fprintf(info.fp_wr, "%s\n", info.vec[i]); 451 } 452 453 #ifdef USE_JANSSON 454 int 455 fips_test_parse_one_json_vector_set(void) 456 { 457 json_t *algo_obj = json_object_get(json_info.json_vector_set, "algorithm"); 458 const char *algo_str = json_string_value(algo_obj); 459 460 /* Vector sets contain the algorithm type, and nothing else we need. */ 461 if (strstr(algo_str, "AES-GCM")) 462 info.algo = FIPS_TEST_ALGO_AES_GCM; 463 else if (strstr(algo_str, "HMAC")) 464 info.algo = FIPS_TEST_ALGO_HMAC; 465 else if (strstr(algo_str, "CMAC")) 466 info.algo = FIPS_TEST_ALGO_AES_CMAC; 467 else if (strstr(algo_str, "AES-CBC")) 468 info.algo = FIPS_TEST_ALGO_AES_CBC; 469 else if (strstr(algo_str, "AES-XTS")) 470 info.algo = FIPS_TEST_ALGO_AES_XTS; 471 else if (strstr(algo_str, "SHA")) 472 info.algo = FIPS_TEST_ALGO_SHA; 473 else if (strstr(algo_str, "TDES-CBC") || 474 strstr(algo_str, "TDES-ECB")) 475 info.algo = FIPS_TEST_ALGO_TDES; 476 else 477 return -EINVAL; 478 479 return 0; 480 } 481 482 int 483 fips_test_parse_one_json_group(void) 484 { 485 int ret, i; 486 json_t *param; 487 488 if (info.interim_callbacks) { 489 char json_value[FIPS_TEST_JSON_BUF_LEN]; 490 for (i = 0; info.interim_callbacks[i].key != NULL; i++) { 491 param = json_object_get(json_info.json_test_group, 492 info.interim_callbacks[i].key); 493 if (!param) 494 continue; 495 496 switch (json_typeof(param)) { 497 case JSON_STRING: 498 snprintf(json_value, sizeof(json_value), "%s", 499 json_string_value(param)); 500 break; 501 502 case JSON_INTEGER: 503 snprintf(json_value, sizeof(json_value), "%"JSON_INTEGER_FORMAT, 504 json_integer_value(param)); 505 break; 506 507 default: 508 return -EINVAL; 509 } 510 511 ret = info.interim_callbacks[i].cb( 512 info.interim_callbacks[i].key, json_value, 513 info.interim_callbacks[i].val 514 ); 515 if (ret < 0) 516 return ret; 517 } 518 519 if (info.parse_interim_writeback) { 520 ret = info.parse_interim_writeback(NULL); 521 if (ret < 0) 522 return ret; 523 } 524 } 525 526 return 0; 527 } 528 529 int 530 fips_test_parse_one_json_case(void) 531 { 532 uint32_t i; 533 int ret = 0; 534 json_t *param; 535 536 for (i = 0; info.callbacks[i].key != NULL; i++) { 537 param = json_object_get(json_info.json_test_case, info.callbacks[i].key); 538 if (param) { 539 strcpy(info.one_line_text, json_string_value(param)); 540 ret = info.callbacks[i].cb( 541 info.callbacks[i].key, info.one_line_text, 542 info.callbacks[i].val 543 ); 544 if (ret < 0) 545 return ret; 546 } 547 } 548 549 return 0; 550 } 551 #endif /* USE_JANSSON */ 552 553 static int 554 parser_read_uint64_hex(uint64_t *value, const char *p) 555 { 556 char *next; 557 uint64_t val; 558 559 p = skip_white_spaces(p); 560 561 val = strtoul(p, &next, 16); 562 if (p == next) 563 return -EINVAL; 564 565 p = skip_white_spaces(next); 566 if (*p != '\0') 567 return -EINVAL; 568 569 *value = val; 570 return 0; 571 } 572 573 int 574 parser_read_uint8_hex(uint8_t *value, const char *p) 575 { 576 uint64_t val = 0; 577 int ret = parser_read_uint64_hex(&val, p); 578 579 if (ret < 0) 580 return ret; 581 582 if (val > UINT8_MAX) 583 return -ERANGE; 584 585 *value = val; 586 return 0; 587 } 588 589 int 590 parse_uint8_known_len_hex_str(const char *key, char *src, struct fips_val *val) 591 { 592 struct fips_val tmp_val = {0}; 593 uint32_t len = val->len; 594 int ret; 595 596 if (len == 0) { 597 if (val->val != NULL) { 598 rte_free(val->val); 599 val->val = NULL; 600 } 601 602 return 0; 603 } 604 605 ret = parse_uint8_hex_str(key, src, &tmp_val); 606 if (ret < 0) 607 return ret; 608 609 if (tmp_val.len == val->len) { 610 val->val = tmp_val.val; 611 return 0; 612 } 613 614 if (tmp_val.len < val->len) { 615 rte_free(tmp_val.val); 616 return -EINVAL; 617 } 618 619 val->val = rte_zmalloc(NULL, val->len, 0); 620 if (!val->val) { 621 rte_free(tmp_val.val); 622 memset(val, 0, sizeof(*val)); 623 return -ENOMEM; 624 } 625 626 memcpy(val->val, tmp_val.val, val->len); 627 rte_free(tmp_val.val); 628 629 return 0; 630 } 631 632 int 633 parse_uint8_hex_str(const char *key, char *src, struct fips_val *val) 634 { 635 uint32_t len, j; 636 637 #ifdef USE_JANSSON 638 /* 639 * Offset not applicable in case of JSON test vectors. 640 */ 641 RTE_SET_USED(key); 642 #else 643 src += strlen(key); 644 #endif 645 646 len = strlen(src) / 2; 647 648 if (val->val) { 649 rte_free(val->val); 650 val->val = NULL; 651 } 652 653 val->val = rte_zmalloc(NULL, len + 1, 0); 654 if (!val->val) 655 return -ENOMEM; 656 657 for (j = 0; j < len; j++) { 658 char byte[3] = {src[j * 2], src[j * 2 + 1], '\0'}; 659 660 if (parser_read_uint8_hex(&val->val[j], byte) < 0) { 661 rte_free(val->val); 662 memset(val, 0, sizeof(*val)); 663 return -EINVAL; 664 } 665 } 666 667 val->len = len; 668 669 return 0; 670 } 671 672 #ifdef USE_JANSSON 673 int 674 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 675 { 676 RTE_SET_USED(key); 677 678 return parser_read_uint32(&val->len, src); 679 } 680 #else 681 int 682 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 683 { 684 char *data = src + strlen(key); 685 size_t data_len = strlen(data); 686 int ret; 687 688 if (data[data_len - 1] == ']') { 689 char *tmp_data = calloc(1, data_len + 1); 690 691 if (tmp_data == NULL) 692 return -ENOMEM; 693 694 strlcpy(tmp_data, data, data_len); 695 696 ret = parser_read_uint32(&val->len, tmp_data); 697 698 free(tmp_data); 699 } else 700 ret = parser_read_uint32(&val->len, data); 701 702 return ret; 703 } 704 #endif 705 706 int 707 parser_read_uint32_bit_val(const char *key, char *src, struct fips_val *val) 708 { 709 int ret; 710 711 ret = parser_read_uint32_val(key, src, val); 712 713 if (ret < 0) 714 return ret; 715 716 val->len /= 8; 717 718 return 0; 719 } 720 721 int 722 writeback_hex_str(const char *key, char *dst, struct fips_val *val) 723 { 724 char *str = dst; 725 uint32_t len; 726 727 str += strlen(key); 728 729 for (len = 0; len < val->len; len++) 730 snprintf(str + len * 2, 255, "%02x", val->val[len]); 731 732 return 0; 733 } 734 735 static int 736 parser_read_uint64(uint64_t *value, const char *p) 737 { 738 char *next; 739 uint64_t val; 740 741 p = skip_white_spaces(p); 742 if (!isdigit(*p)) 743 return -EINVAL; 744 745 val = strtoul(p, &next, 10); 746 if (p == next) 747 return -EINVAL; 748 749 p = next; 750 switch (*p) { 751 case 'T': 752 val *= 1024ULL; 753 /* fall through */ 754 case 'G': 755 val *= 1024ULL; 756 /* fall through */ 757 case 'M': 758 val *= 1024ULL; 759 /* fall through */ 760 case 'k': 761 case 'K': 762 val *= 1024ULL; 763 p++; 764 break; 765 } 766 767 p = skip_white_spaces(p); 768 if (*p != '\0') 769 return -EINVAL; 770 771 *value = val; 772 return 0; 773 } 774 775 int 776 parser_read_uint32(uint32_t *value, char *p) 777 { 778 uint64_t val = 0; 779 int ret = parser_read_uint64(&val, p); 780 781 if (ret < 0) 782 return ret; 783 784 if (val > UINT32_MAX) 785 return -EINVAL; 786 787 *value = val; 788 return 0; 789 } 790 791 int 792 parser_read_uint16(uint16_t *value, const char *p) 793 { 794 uint64_t val = 0; 795 int ret = parser_read_uint64(&val, p); 796 797 if (ret < 0) 798 return ret; 799 800 if (val > UINT16_MAX) 801 return -ERANGE; 802 803 *value = val; 804 return 0; 805 } 806 807 void 808 parse_write_hex_str(struct fips_val *src) 809 { 810 writeback_hex_str("", info.one_line_text, src); 811 812 fprintf(info.fp_wr, "%s\n", info.one_line_text); 813 } 814 815 int 816 update_info_vec(uint32_t count) 817 { 818 const struct fips_test_callback *cb; 819 uint32_t i, j; 820 821 if (!info.writeback_callbacks) 822 return -1; 823 824 cb = &info.writeback_callbacks[0]; 825 826 if ((info.version == 21.4f) && (!(strstr(info.vec[0], cb->key)))) { 827 fprintf(info.fp_wr, "%s%u\n", cb->key, count); 828 i = 0; 829 } else { 830 snprintf(info.vec[0], strlen(info.vec[0]) + 4, "%s%u", cb->key, 831 count); 832 i = 1; 833 } 834 835 for (; i < info.nb_vec_lines; i++) { 836 for (j = 1; info.writeback_callbacks[j].key != NULL; j++) { 837 cb = &info.writeback_callbacks[j]; 838 if (strstr(info.vec[i], cb->key)) { 839 cb->cb(cb->key, info.vec[i], cb->val); 840 break; 841 } 842 } 843 } 844 845 return 0; 846 } 847