1 /* SPDX-License-Identifier: BSD-3-Clause 2 * Copyright(c) 2018 Intel Corporation 3 */ 4 5 #include <ctype.h> 6 #include <stdio.h> 7 #include <stdlib.h> 8 #include <string.h> 9 10 #include <rte_string_fns.h> 11 #include <rte_cryptodev.h> 12 #include <rte_malloc.h> 13 14 #include "fips_validation.h" 15 16 #define skip_white_spaces(pos) \ 17 ({ \ 18 __typeof__(pos) _p = (pos); \ 19 for ( ; isspace(*_p); _p++) \ 20 ; \ 21 _p; \ 22 }) 23 24 static int 25 get_file_line(void) 26 { 27 FILE *fp = info.fp_rd; 28 char *line = info.one_line_text; 29 int ret; 30 uint32_t loc = 0; 31 32 memset(line, 0, MAX_LINE_CHAR); 33 while ((ret = fgetc(fp)) != EOF) { 34 char c = (char)ret; 35 36 if (loc >= MAX_LINE_CHAR - 1) 37 return -ENOMEM; 38 if (c == '\n') 39 break; 40 line[loc++] = c; 41 } 42 43 if (ret == EOF) 44 return -EOF; 45 46 return 0; 47 } 48 49 int 50 fips_test_fetch_one_block(void) 51 { 52 size_t size; 53 int ret = 0; 54 uint32_t i; 55 56 for (i = 0; i < info.nb_vec_lines; i++) { 57 free(info.vec[i]); 58 info.vec[i] = NULL; 59 } 60 61 i = 0; 62 do { 63 if (i >= MAX_LINE_PER_VECTOR) { 64 ret = -ENOMEM; 65 goto error_exit; 66 } 67 68 ret = get_file_line(); 69 size = strlen(info.one_line_text); 70 if (size == 0) 71 break; 72 73 info.vec[i] = calloc(1, size + 5); 74 if (info.vec[i] == NULL) 75 goto error_exit; 76 77 strlcpy(info.vec[i], info.one_line_text, size + 1); 78 i++; 79 } while (ret == 0); 80 81 info.nb_vec_lines = i; 82 83 return ret; 84 85 error_exit: 86 for (i = 0; i < MAX_LINE_PER_VECTOR; i++) 87 if (info.vec[i] != NULL) { 88 free(info.vec[i]); 89 info.vec[i] = NULL; 90 } 91 92 info.nb_vec_lines = 0; 93 94 return -ENOMEM; 95 } 96 97 static void 98 fips_test_parse_version(void) 99 { 100 int len = strlen(info.vec[0]); 101 char *ptr = info.vec[0]; 102 103 info.version = strtof(ptr + len - 4, NULL); 104 } 105 106 static int 107 fips_test_parse_header(void) 108 { 109 uint32_t i; 110 char *tmp; 111 int ret; 112 int algo_parsed = 0; 113 time_t t = time(NULL); 114 struct tm *tm_now = localtime(&t); 115 116 ret = fips_test_fetch_one_block(); 117 if (ret < 0) 118 return ret; 119 120 if (info.nb_vec_lines) 121 fips_test_parse_version(); 122 123 for (i = 0; i < info.nb_vec_lines; i++) { 124 if (!algo_parsed) { 125 if (strstr(info.vec[i], "AES")) { 126 algo_parsed = 1; 127 info.algo = FIPS_TEST_ALGO_AES; 128 ret = parse_test_aes_init(); 129 if (ret < 0) 130 return ret; 131 } else if (strstr(info.vec[i], "GCM")) { 132 algo_parsed = 1; 133 info.algo = FIPS_TEST_ALGO_AES_GCM; 134 ret = parse_test_gcm_init(); 135 if (ret < 0) 136 return ret; 137 } else if (strstr(info.vec[i], "CMAC")) { 138 algo_parsed = 1; 139 info.algo = FIPS_TEST_ALGO_AES_CMAC; 140 ret = parse_test_cmac_init(); 141 if (ret < 0) 142 return 0; 143 } else if (strstr(info.vec[i], "CCM")) { 144 algo_parsed = 1; 145 info.algo = FIPS_TEST_ALGO_AES_CCM; 146 ret = parse_test_ccm_init(); 147 if (ret < 0) 148 return 0; 149 } else if (strstr(info.vec[i], "HMAC")) { 150 algo_parsed = 1; 151 info.algo = FIPS_TEST_ALGO_HMAC; 152 ret = parse_test_hmac_init(); 153 if (ret < 0) 154 return ret; 155 } else if (strstr(info.vec[i], "TDES")) { 156 algo_parsed = 1; 157 info.algo = FIPS_TEST_ALGO_TDES; 158 ret = parse_test_tdes_init(); 159 if (ret < 0) 160 return 0; 161 } else if (strstr(info.vec[i], "PERMUTATION")) { 162 algo_parsed = 1; 163 info.algo = FIPS_TEST_ALGO_TDES; 164 ret = parse_test_tdes_init(); 165 if (ret < 0) 166 return 0; 167 } else if (strstr(info.vec[i], "VARIABLE")) { 168 algo_parsed = 1; 169 info.algo = FIPS_TEST_ALGO_TDES; 170 ret = parse_test_tdes_init(); 171 if (ret < 0) 172 return 0; 173 } else if (strstr(info.vec[i], "SUBSTITUTION")) { 174 algo_parsed = 1; 175 info.algo = FIPS_TEST_ALGO_TDES; 176 ret = parse_test_tdes_init(); 177 if (ret < 0) 178 return 0; 179 } else if (strstr(info.vec[i], "SHA-")) { 180 algo_parsed = 1; 181 info.algo = FIPS_TEST_ALGO_SHA; 182 ret = parse_test_sha_init(); 183 if (ret < 0) 184 return ret; 185 } else if (strstr(info.vec[i], "XTS")) { 186 algo_parsed = 1; 187 info.algo = FIPS_TEST_ALGO_AES_XTS; 188 ret = parse_test_xts_init(); 189 if (ret < 0) 190 return ret; 191 } 192 } 193 194 tmp = strstr(info.vec[i], "# Config info for "); 195 if (tmp != NULL) { 196 fprintf(info.fp_wr, "%s%s\n", "# Config info for DPDK Cryptodev ", 197 info.device_name); 198 continue; 199 } 200 201 tmp = strstr(info.vec[i], "# HMAC information for "); 202 if (tmp != NULL) { 203 fprintf(info.fp_wr, "%s%s\n", "# HMAC information for " 204 "DPDK Cryptodev ", 205 info.device_name); 206 continue; 207 } 208 209 tmp = strstr(info.vec[i], "# Config Info for : "); 210 if (tmp != NULL) { 211 212 fprintf(info.fp_wr, "%s%s\n", "# Config Info for DPDK Cryptodev : ", 213 info.device_name); 214 continue; 215 } 216 217 tmp = strstr(info.vec[i], "# information for "); 218 if (tmp != NULL) { 219 220 char tmp_output[128] = {0}; 221 222 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 223 224 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 225 "information for DPDK Cryptodev ", 226 info.device_name); 227 continue; 228 } 229 230 tmp = strstr(info.vec[i], " test information for "); 231 if (tmp != NULL) { 232 char tmp_output[128] = {0}; 233 234 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 235 236 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 237 "test information for DPDK Cryptodev ", 238 info.device_name); 239 continue; 240 } 241 242 tmp = strstr(info.vec[i], "\" information for \""); 243 if (tmp != NULL) { 244 char tmp_output[128] = {0}; 245 246 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 247 248 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 249 "\" information for DPDK Cryptodev ", 250 info.device_name); 251 continue; 252 } 253 254 if (i == info.nb_vec_lines - 1) { 255 /** update the time as current time, write to file */ 256 fprintf(info.fp_wr, "%s%s\n", "# Generated on ", 257 asctime(tm_now)); 258 continue; 259 } 260 261 /* to this point, no field need to update, 262 * only copy to rsp file 263 */ 264 fprintf(info.fp_wr, "%s\n", info.vec[i]); 265 } 266 267 return 0; 268 } 269 270 static int 271 parse_file_type(const char *path) 272 { 273 const char *tmp = path + strlen(path) - 3; 274 275 if (strstr(tmp, REQ_FILE_PREFIX)) 276 info.file_type = FIPS_TYPE_REQ; 277 else if (strstr(tmp, RSP_FILE_PREFIX)) 278 info.file_type = FIPS_TYPE_RSP; 279 else if (strstr(path, FAX_FILE_PREFIX)) 280 info.file_type = FIPS_TYPE_FAX; 281 else if (strstr(path, JSON_FILE_PREFIX)) 282 info.file_type = FIPS_TYPE_JSON; 283 else 284 return -EINVAL; 285 286 return 0; 287 } 288 289 int 290 fips_test_init(const char *req_file_path, const char *rsp_file_path, 291 const char *device_name) 292 { 293 if (strcmp(req_file_path, rsp_file_path) == 0) { 294 RTE_LOG(ERR, USER1, "File paths cannot be the same\n"); 295 return -EINVAL; 296 } 297 298 fips_test_clear(); 299 300 if (rte_strscpy(info.file_name, req_file_path, 301 sizeof(info.file_name)) < 0) { 302 RTE_LOG(ERR, USER1, "Path %s too long\n", req_file_path); 303 return -EINVAL; 304 } 305 info.algo = FIPS_TEST_ALGO_MAX; 306 if (parse_file_type(req_file_path) < 0) { 307 RTE_LOG(ERR, USER1, "File %s type not supported\n", 308 req_file_path); 309 return -EINVAL; 310 } 311 312 info.fp_rd = fopen(req_file_path, "r"); 313 if (!info.fp_rd) { 314 RTE_LOG(ERR, USER1, "Cannot open file %s\n", req_file_path); 315 return -EINVAL; 316 } 317 318 if (info.file_type == FIPS_TYPE_JSON) { 319 #ifdef USE_JANSSON 320 json_error_t error; 321 json_info.json_root = json_loadf(info.fp_rd, 0, &error); 322 if (!json_info.json_root) { 323 RTE_LOG(ERR, USER1, "Cannot parse json file %s (line %d, column %d)\n", 324 req_file_path, error.line, error.column); 325 return -EINVAL; 326 } 327 #else /* USE_JANSSON */ 328 RTE_LOG(ERR, USER1, "No json library configured.\n"); 329 return -EINVAL; 330 #endif /* USE_JANSSON */ 331 } 332 333 info.fp_wr = fopen(rsp_file_path, "w"); 334 if (!info.fp_wr) { 335 RTE_LOG(ERR, USER1, "Cannot open file %s\n", rsp_file_path); 336 return -EINVAL; 337 } 338 339 info.one_line_text = calloc(1, MAX_LINE_CHAR); 340 if (!info.one_line_text) { 341 RTE_LOG(ERR, USER1, "Insufficient memory\n"); 342 return -ENOMEM; 343 } 344 345 if (rte_strscpy(info.device_name, device_name, 346 sizeof(info.device_name)) < 0) { 347 RTE_LOG(ERR, USER1, "Device name %s too long\n", device_name); 348 return -EINVAL; 349 } 350 351 if (info.file_type == FIPS_TYPE_JSON) 352 return 0; 353 354 if (fips_test_parse_header() < 0) { 355 RTE_LOG(ERR, USER1, "Failed parsing header\n"); 356 return -1; 357 } 358 359 return 0; 360 } 361 362 void 363 fips_test_clear(void) 364 { 365 if (info.fp_rd) 366 fclose(info.fp_rd); 367 if (info.fp_wr) 368 fclose(info.fp_wr); 369 free(info.one_line_text); 370 if (info.nb_vec_lines) { 371 uint32_t i; 372 373 for (i = 0; i < info.nb_vec_lines; i++) 374 free(info.vec[i]); 375 } 376 377 memset(&info, 0, sizeof(info)); 378 } 379 380 int 381 fips_test_parse_one_case(void) 382 { 383 uint32_t i, j = 0; 384 uint32_t is_interim; 385 uint32_t interim_cnt = 0; 386 int ret; 387 388 info.vec_start_off = 0; 389 390 if (info.interim_callbacks) { 391 for (i = 0; i < info.nb_vec_lines; i++) { 392 is_interim = 0; 393 for (j = 0; info.interim_callbacks[j].key != NULL; j++) 394 if (strstr(info.vec[i], 395 info.interim_callbacks[j].key)) { 396 is_interim = 1; 397 398 ret = info.interim_callbacks[j].cb( 399 info.interim_callbacks[j].key, 400 info.vec[i], 401 info.interim_callbacks[j].val); 402 if (ret < 0) 403 return ret; 404 } 405 406 if (is_interim) 407 interim_cnt += 1; 408 } 409 } 410 411 if (interim_cnt) { 412 if (info.version == 21.4f) { 413 for (i = 0; i < interim_cnt; i++) 414 fprintf(info.fp_wr, "%s\n", info.vec[i]); 415 fprintf(info.fp_wr, "\n"); 416 417 if (info.nb_vec_lines == interim_cnt) 418 return 1; 419 } else { 420 for (i = 0; i < info.nb_vec_lines; i++) 421 fprintf(info.fp_wr, "%s\n", info.vec[i]); 422 fprintf(info.fp_wr, "\n"); 423 return 1; 424 } 425 } 426 427 info.vec_start_off = interim_cnt; 428 429 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) { 430 for (j = 0; info.callbacks[j].key != NULL; j++) 431 if (strstr(info.vec[i], info.callbacks[j].key)) { 432 ret = info.callbacks[j].cb( 433 info.callbacks[j].key, 434 info.vec[i], info.callbacks[j].val); 435 if (ret < 0) 436 return ret; 437 break; 438 } 439 } 440 441 return 0; 442 } 443 444 void 445 fips_test_write_one_case(void) 446 { 447 uint32_t i; 448 449 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) 450 fprintf(info.fp_wr, "%s\n", info.vec[i]); 451 } 452 453 #ifdef USE_JANSSON 454 int 455 fips_test_parse_one_json_vector_set(void) 456 { 457 json_t *algo_obj = json_object_get(json_info.json_vector_set, "algorithm"); 458 const char *algo_str = json_string_value(algo_obj); 459 460 /* Vector sets contain the algorithm type, and nothing else we need. */ 461 if (strstr(algo_str, "AES-GCM")) 462 info.algo = FIPS_TEST_ALGO_AES_GCM; 463 else if (strstr(algo_str, "HMAC")) 464 info.algo = FIPS_TEST_ALGO_HMAC; 465 else if (strstr(algo_str, "CMAC")) 466 info.algo = FIPS_TEST_ALGO_AES_CMAC; 467 else if (strstr(algo_str, "AES-CBC")) 468 info.algo = FIPS_TEST_ALGO_AES_CBC; 469 else if (strstr(algo_str, "AES-XTS")) 470 info.algo = FIPS_TEST_ALGO_AES_XTS; 471 else if (strstr(algo_str, "SHA")) 472 info.algo = FIPS_TEST_ALGO_SHA; 473 else if (strstr(algo_str, "TDES-CBC") || 474 strstr(algo_str, "TDES-ECB")) 475 info.algo = FIPS_TEST_ALGO_TDES; 476 else 477 return -EINVAL; 478 479 return 0; 480 } 481 482 int 483 fips_test_parse_one_json_group(void) 484 { 485 int ret, i; 486 json_t *param; 487 488 if (info.interim_callbacks) { 489 char json_value[256]; 490 for (i = 0; info.interim_callbacks[i].key != NULL; i++) { 491 param = json_object_get(json_info.json_test_group, 492 info.interim_callbacks[i].key); 493 if (!param) 494 continue; 495 496 switch (json_typeof(param)) { 497 case JSON_STRING: 498 snprintf(json_value, 256, "%s", json_string_value(param)); 499 break; 500 501 case JSON_INTEGER: 502 snprintf(json_value, 255, "%"JSON_INTEGER_FORMAT, 503 json_integer_value(param)); 504 break; 505 506 default: 507 return -EINVAL; 508 } 509 510 ret = info.interim_callbacks[i].cb( 511 info.interim_callbacks[i].key, json_value, 512 info.interim_callbacks[i].val 513 ); 514 if (ret < 0) 515 return ret; 516 } 517 518 if (info.parse_interim_writeback) { 519 ret = info.parse_interim_writeback(NULL); 520 if (ret < 0) 521 return ret; 522 } 523 } 524 525 return 0; 526 } 527 528 int 529 fips_test_parse_one_json_case(void) 530 { 531 uint32_t i; 532 int ret = 0; 533 json_t *param; 534 535 for (i = 0; info.callbacks[i].key != NULL; i++) { 536 param = json_object_get(json_info.json_test_case, info.callbacks[i].key); 537 if (param) { 538 strcpy(info.one_line_text, json_string_value(param)); 539 ret = info.callbacks[i].cb( 540 info.callbacks[i].key, info.one_line_text, 541 info.callbacks[i].val 542 ); 543 if (ret < 0) 544 return ret; 545 } 546 } 547 548 return 0; 549 } 550 #endif /* USE_JANSSON */ 551 552 static int 553 parser_read_uint64_hex(uint64_t *value, const char *p) 554 { 555 char *next; 556 uint64_t val; 557 558 p = skip_white_spaces(p); 559 560 val = strtoul(p, &next, 16); 561 if (p == next) 562 return -EINVAL; 563 564 p = skip_white_spaces(next); 565 if (*p != '\0') 566 return -EINVAL; 567 568 *value = val; 569 return 0; 570 } 571 572 int 573 parser_read_uint8_hex(uint8_t *value, const char *p) 574 { 575 uint64_t val = 0; 576 int ret = parser_read_uint64_hex(&val, p); 577 578 if (ret < 0) 579 return ret; 580 581 if (val > UINT8_MAX) 582 return -ERANGE; 583 584 *value = val; 585 return 0; 586 } 587 588 int 589 parse_uint8_known_len_hex_str(const char *key, char *src, struct fips_val *val) 590 { 591 struct fips_val tmp_val = {0}; 592 uint32_t len = val->len; 593 int ret; 594 595 if (len == 0) { 596 if (val->val != NULL) { 597 rte_free(val->val); 598 val->val = NULL; 599 } 600 601 return 0; 602 } 603 604 ret = parse_uint8_hex_str(key, src, &tmp_val); 605 if (ret < 0) 606 return ret; 607 608 if (tmp_val.len == val->len) { 609 val->val = tmp_val.val; 610 return 0; 611 } 612 613 if (tmp_val.len < val->len) { 614 rte_free(tmp_val.val); 615 return -EINVAL; 616 } 617 618 val->val = rte_zmalloc(NULL, val->len, 0); 619 if (!val->val) { 620 rte_free(tmp_val.val); 621 memset(val, 0, sizeof(*val)); 622 return -ENOMEM; 623 } 624 625 memcpy(val->val, tmp_val.val, val->len); 626 rte_free(tmp_val.val); 627 628 return 0; 629 } 630 631 int 632 parse_uint8_hex_str(const char *key, char *src, struct fips_val *val) 633 { 634 uint32_t len, j; 635 636 #ifdef USE_JANSSON 637 /* 638 * Offset not applicable in case of JSON test vectors. 639 */ 640 RTE_SET_USED(key); 641 #else 642 src += strlen(key); 643 #endif 644 645 len = strlen(src) / 2; 646 647 if (val->val) { 648 rte_free(val->val); 649 val->val = NULL; 650 } 651 652 val->val = rte_zmalloc(NULL, len + 1, 0); 653 if (!val->val) 654 return -ENOMEM; 655 656 for (j = 0; j < len; j++) { 657 char byte[3] = {src[j * 2], src[j * 2 + 1], '\0'}; 658 659 if (parser_read_uint8_hex(&val->val[j], byte) < 0) { 660 rte_free(val->val); 661 memset(val, 0, sizeof(*val)); 662 return -EINVAL; 663 } 664 } 665 666 val->len = len; 667 668 return 0; 669 } 670 671 #ifdef USE_JANSSON 672 int 673 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 674 { 675 RTE_SET_USED(key); 676 677 return parser_read_uint32(&val->len, src); 678 } 679 #else 680 int 681 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 682 { 683 char *data = src + strlen(key); 684 size_t data_len = strlen(data); 685 int ret; 686 687 if (data[data_len - 1] == ']') { 688 char *tmp_data = calloc(1, data_len + 1); 689 690 if (tmp_data == NULL) 691 return -ENOMEM; 692 693 strlcpy(tmp_data, data, data_len); 694 695 ret = parser_read_uint32(&val->len, tmp_data); 696 697 free(tmp_data); 698 } else 699 ret = parser_read_uint32(&val->len, data); 700 701 return ret; 702 } 703 #endif 704 705 int 706 parser_read_uint32_bit_val(const char *key, char *src, struct fips_val *val) 707 { 708 int ret; 709 710 ret = parser_read_uint32_val(key, src, val); 711 712 if (ret < 0) 713 return ret; 714 715 val->len /= 8; 716 717 return 0; 718 } 719 720 int 721 writeback_hex_str(const char *key, char *dst, struct fips_val *val) 722 { 723 char *str = dst; 724 uint32_t len; 725 726 str += strlen(key); 727 728 for (len = 0; len < val->len; len++) 729 snprintf(str + len * 2, 255, "%02x", val->val[len]); 730 731 return 0; 732 } 733 734 static int 735 parser_read_uint64(uint64_t *value, const char *p) 736 { 737 char *next; 738 uint64_t val; 739 740 p = skip_white_spaces(p); 741 if (!isdigit(*p)) 742 return -EINVAL; 743 744 val = strtoul(p, &next, 10); 745 if (p == next) 746 return -EINVAL; 747 748 p = next; 749 switch (*p) { 750 case 'T': 751 val *= 1024ULL; 752 /* fall through */ 753 case 'G': 754 val *= 1024ULL; 755 /* fall through */ 756 case 'M': 757 val *= 1024ULL; 758 /* fall through */ 759 case 'k': 760 case 'K': 761 val *= 1024ULL; 762 p++; 763 break; 764 } 765 766 p = skip_white_spaces(p); 767 if (*p != '\0') 768 return -EINVAL; 769 770 *value = val; 771 return 0; 772 } 773 774 int 775 parser_read_uint32(uint32_t *value, char *p) 776 { 777 uint64_t val = 0; 778 int ret = parser_read_uint64(&val, p); 779 780 if (ret < 0) 781 return ret; 782 783 if (val > UINT32_MAX) 784 return -EINVAL; 785 786 *value = val; 787 return 0; 788 } 789 790 int 791 parser_read_uint16(uint16_t *value, const char *p) 792 { 793 uint64_t val = 0; 794 int ret = parser_read_uint64(&val, p); 795 796 if (ret < 0) 797 return ret; 798 799 if (val > UINT16_MAX) 800 return -ERANGE; 801 802 *value = val; 803 return 0; 804 } 805 806 void 807 parse_write_hex_str(struct fips_val *src) 808 { 809 writeback_hex_str("", info.one_line_text, src); 810 811 fprintf(info.fp_wr, "%s\n", info.one_line_text); 812 } 813 814 int 815 update_info_vec(uint32_t count) 816 { 817 const struct fips_test_callback *cb; 818 uint32_t i, j; 819 820 if (!info.writeback_callbacks) 821 return -1; 822 823 cb = &info.writeback_callbacks[0]; 824 825 if ((info.version == 21.4f) && (!(strstr(info.vec[0], cb->key)))) { 826 fprintf(info.fp_wr, "%s%u\n", cb->key, count); 827 i = 0; 828 } else { 829 snprintf(info.vec[0], strlen(info.vec[0]) + 4, "%s%u", cb->key, 830 count); 831 i = 1; 832 } 833 834 for (; i < info.nb_vec_lines; i++) { 835 for (j = 1; info.writeback_callbacks[j].key != NULL; j++) { 836 cb = &info.writeback_callbacks[j]; 837 if (strstr(info.vec[i], cb->key)) { 838 cb->cb(cb->key, info.vec[i], cb->val); 839 break; 840 } 841 } 842 } 843 844 return 0; 845 } 846