1 /* SPDX-License-Identifier: BSD-3-Clause 2 * Copyright(c) 2018 Intel Corporation 3 */ 4 5 #include <stdio.h> 6 #include <string.h> 7 8 #include <rte_string_fns.h> 9 #include <rte_cryptodev.h> 10 #include <rte_malloc.h> 11 12 #include "fips_validation.h" 13 14 #define skip_white_spaces(pos) \ 15 ({ \ 16 __typeof__(pos) _p = (pos); \ 17 for ( ; isspace(*_p); _p++) \ 18 ; \ 19 _p; \ 20 }) 21 22 static int 23 get_file_line(void) 24 { 25 FILE *fp = info.fp_rd; 26 char *line = info.one_line_text; 27 int ret; 28 uint32_t loc = 0; 29 30 memset(line, 0, MAX_LINE_CHAR); 31 while ((ret = fgetc(fp)) != EOF) { 32 char c = (char)ret; 33 34 if (loc >= MAX_LINE_CHAR - 1) 35 return -ENOMEM; 36 if (c == '\n') 37 break; 38 line[loc++] = c; 39 } 40 41 if (ret == EOF) 42 return -EOF; 43 44 return 0; 45 } 46 47 int 48 fips_test_fetch_one_block(void) 49 { 50 size_t size; 51 int ret = 0; 52 uint32_t i; 53 54 for (i = 0; i < info.nb_vec_lines; i++) { 55 free(info.vec[i]); 56 info.vec[i] = NULL; 57 } 58 59 i = 0; 60 do { 61 if (i >= MAX_LINE_PER_VECTOR) { 62 ret = -ENOMEM; 63 goto error_exit; 64 } 65 66 ret = get_file_line(); 67 size = strlen(info.one_line_text); 68 if (size == 0) 69 break; 70 71 info.vec[i] = calloc(1, size + 5); 72 if (info.vec[i] == NULL) 73 goto error_exit; 74 75 strlcpy(info.vec[i], info.one_line_text, size + 1); 76 i++; 77 } while (ret == 0); 78 79 info.nb_vec_lines = i; 80 81 return ret; 82 83 error_exit: 84 for (i = 0; i < MAX_LINE_PER_VECTOR; i++) 85 if (info.vec[i] != NULL) { 86 free(info.vec[i]); 87 info.vec[i] = NULL; 88 } 89 90 info.nb_vec_lines = 0; 91 92 return -ENOMEM; 93 } 94 95 static void 96 fips_test_parse_version(void) 97 { 98 int len = strlen(info.vec[0]); 99 char *ptr = info.vec[0]; 100 101 info.version = strtof(ptr + len - 4, NULL); 102 } 103 104 static int 105 fips_test_parse_header(void) 106 { 107 uint32_t i; 108 char *tmp; 109 int ret; 110 int algo_parsed = 0; 111 time_t t = time(NULL); 112 struct tm *tm_now = localtime(&t); 113 114 ret = fips_test_fetch_one_block(); 115 if (ret < 0) 116 return ret; 117 118 if (info.nb_vec_lines) 119 fips_test_parse_version(); 120 121 for (i = 0; i < info.nb_vec_lines; i++) { 122 if (!algo_parsed) { 123 if (strstr(info.vec[i], "AES")) { 124 algo_parsed = 1; 125 info.algo = FIPS_TEST_ALGO_AES; 126 ret = parse_test_aes_init(); 127 if (ret < 0) 128 return ret; 129 } else if (strstr(info.vec[i], "GCM")) { 130 algo_parsed = 1; 131 info.algo = FIPS_TEST_ALGO_AES_GCM; 132 ret = parse_test_gcm_init(); 133 if (ret < 0) 134 return ret; 135 } else if (strstr(info.vec[i], "CMAC")) { 136 algo_parsed = 1; 137 info.algo = FIPS_TEST_ALGO_AES_CMAC; 138 ret = parse_test_cmac_init(); 139 if (ret < 0) 140 return 0; 141 } else if (strstr(info.vec[i], "CCM")) { 142 algo_parsed = 1; 143 info.algo = FIPS_TEST_ALGO_AES_CCM; 144 ret = parse_test_ccm_init(); 145 if (ret < 0) 146 return 0; 147 } else if (strstr(info.vec[i], "HMAC")) { 148 algo_parsed = 1; 149 info.algo = FIPS_TEST_ALGO_HMAC; 150 ret = parse_test_hmac_init(); 151 if (ret < 0) 152 return ret; 153 } else if (strstr(info.vec[i], "TDES")) { 154 algo_parsed = 1; 155 info.algo = FIPS_TEST_ALGO_TDES; 156 ret = parse_test_tdes_init(); 157 if (ret < 0) 158 return 0; 159 } else if (strstr(info.vec[i], "PERMUTATION")) { 160 algo_parsed = 1; 161 info.algo = FIPS_TEST_ALGO_TDES; 162 ret = parse_test_tdes_init(); 163 if (ret < 0) 164 return 0; 165 } else if (strstr(info.vec[i], "VARIABLE")) { 166 algo_parsed = 1; 167 info.algo = FIPS_TEST_ALGO_TDES; 168 ret = parse_test_tdes_init(); 169 if (ret < 0) 170 return 0; 171 } else if (strstr(info.vec[i], "SUBSTITUTION")) { 172 algo_parsed = 1; 173 info.algo = FIPS_TEST_ALGO_TDES; 174 ret = parse_test_tdes_init(); 175 if (ret < 0) 176 return 0; 177 } else if (strstr(info.vec[i], "SHA-")) { 178 algo_parsed = 1; 179 info.algo = FIPS_TEST_ALGO_SHA; 180 ret = parse_test_sha_init(); 181 if (ret < 0) 182 return ret; 183 } else if (strstr(info.vec[i], "XTS")) { 184 algo_parsed = 1; 185 info.algo = FIPS_TEST_ALGO_AES_XTS; 186 ret = parse_test_xts_init(); 187 if (ret < 0) 188 return ret; 189 } 190 } 191 192 tmp = strstr(info.vec[i], "# Config info for "); 193 if (tmp != NULL) { 194 fprintf(info.fp_wr, "%s%s\n", "# Config info for DPDK Cryptodev ", 195 info.device_name); 196 continue; 197 } 198 199 tmp = strstr(info.vec[i], "# HMAC information for "); 200 if (tmp != NULL) { 201 fprintf(info.fp_wr, "%s%s\n", "# HMAC information for " 202 "DPDK Cryptodev ", 203 info.device_name); 204 continue; 205 } 206 207 tmp = strstr(info.vec[i], "# Config Info for : "); 208 if (tmp != NULL) { 209 210 fprintf(info.fp_wr, "%s%s\n", "# Config Info for DPDK Cryptodev : ", 211 info.device_name); 212 continue; 213 } 214 215 tmp = strstr(info.vec[i], "# information for "); 216 if (tmp != NULL) { 217 218 char tmp_output[128] = {0}; 219 220 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 221 222 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 223 "information for DPDK Cryptodev ", 224 info.device_name); 225 continue; 226 } 227 228 tmp = strstr(info.vec[i], " test information for "); 229 if (tmp != NULL) { 230 char tmp_output[128] = {0}; 231 232 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 233 234 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 235 "test information for DPDK Cryptodev ", 236 info.device_name); 237 continue; 238 } 239 240 tmp = strstr(info.vec[i], "\" information for \""); 241 if (tmp != NULL) { 242 char tmp_output[128] = {0}; 243 244 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 245 246 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 247 "\" information for DPDK Cryptodev ", 248 info.device_name); 249 continue; 250 } 251 252 if (i == info.nb_vec_lines - 1) { 253 /** update the time as current time, write to file */ 254 fprintf(info.fp_wr, "%s%s\n", "# Generated on ", 255 asctime(tm_now)); 256 continue; 257 } 258 259 /* to this point, no field need to update, 260 * only copy to rsp file 261 */ 262 fprintf(info.fp_wr, "%s\n", info.vec[i]); 263 } 264 265 return 0; 266 } 267 268 static int 269 parse_file_type(const char *path) 270 { 271 const char *tmp = path + strlen(path) - 3; 272 273 if (strstr(tmp, REQ_FILE_PREFIX)) 274 info.file_type = FIPS_TYPE_REQ; 275 else if (strstr(tmp, RSP_FILE_PREFIX)) 276 info.file_type = FIPS_TYPE_RSP; 277 else if (strstr(path, FAX_FILE_PREFIX)) 278 info.file_type = FIPS_TYPE_FAX; 279 else if (strstr(path, JSON_FILE_PREFIX)) 280 info.file_type = FIPS_TYPE_JSON; 281 else 282 return -EINVAL; 283 284 return 0; 285 } 286 287 int 288 fips_test_init(const char *req_file_path, const char *rsp_file_path, 289 const char *device_name) 290 { 291 if (strcmp(req_file_path, rsp_file_path) == 0) { 292 RTE_LOG(ERR, USER1, "File paths cannot be the same\n"); 293 return -EINVAL; 294 } 295 296 fips_test_clear(); 297 298 if (rte_strscpy(info.file_name, req_file_path, 299 sizeof(info.file_name)) < 0) { 300 RTE_LOG(ERR, USER1, "Path %s too long\n", req_file_path); 301 return -EINVAL; 302 } 303 info.algo = FIPS_TEST_ALGO_MAX; 304 if (parse_file_type(req_file_path) < 0) { 305 RTE_LOG(ERR, USER1, "File %s type not supported\n", 306 req_file_path); 307 return -EINVAL; 308 } 309 310 info.fp_rd = fopen(req_file_path, "r"); 311 if (!info.fp_rd) { 312 RTE_LOG(ERR, USER1, "Cannot open file %s\n", req_file_path); 313 return -EINVAL; 314 } 315 316 if (info.file_type == FIPS_TYPE_JSON) { 317 #ifdef USE_JANSSON 318 json_error_t error; 319 json_info.json_root = json_loadf(info.fp_rd, 0, &error); 320 if (!json_info.json_root) { 321 RTE_LOG(ERR, USER1, "Cannot parse json file %s (line %d, column %d)\n", 322 req_file_path, error.line, error.column); 323 return -EINVAL; 324 } 325 #else /* USE_JANSSON */ 326 RTE_LOG(ERR, USER1, "No json library configured.\n"); 327 return -EINVAL; 328 #endif /* USE_JANSSON */ 329 } 330 331 info.fp_wr = fopen(rsp_file_path, "w"); 332 if (!info.fp_wr) { 333 RTE_LOG(ERR, USER1, "Cannot open file %s\n", rsp_file_path); 334 return -EINVAL; 335 } 336 337 info.one_line_text = calloc(1, MAX_LINE_CHAR); 338 if (!info.one_line_text) { 339 RTE_LOG(ERR, USER1, "Insufficient memory\n"); 340 return -ENOMEM; 341 } 342 343 if (rte_strscpy(info.device_name, device_name, 344 sizeof(info.device_name)) < 0) { 345 RTE_LOG(ERR, USER1, "Device name %s too long\n", device_name); 346 return -EINVAL; 347 } 348 349 if (info.file_type == FIPS_TYPE_JSON) 350 return 0; 351 352 if (fips_test_parse_header() < 0) { 353 RTE_LOG(ERR, USER1, "Failed parsing header\n"); 354 return -1; 355 } 356 357 return 0; 358 } 359 360 void 361 fips_test_clear(void) 362 { 363 if (info.fp_rd) 364 fclose(info.fp_rd); 365 if (info.fp_wr) 366 fclose(info.fp_wr); 367 free(info.one_line_text); 368 if (info.nb_vec_lines) { 369 uint32_t i; 370 371 for (i = 0; i < info.nb_vec_lines; i++) 372 free(info.vec[i]); 373 } 374 375 memset(&info, 0, sizeof(info)); 376 } 377 378 int 379 fips_test_parse_one_case(void) 380 { 381 uint32_t i, j = 0; 382 uint32_t is_interim; 383 uint32_t interim_cnt = 0; 384 int ret; 385 386 info.vec_start_off = 0; 387 388 if (info.interim_callbacks) { 389 for (i = 0; i < info.nb_vec_lines; i++) { 390 is_interim = 0; 391 for (j = 0; info.interim_callbacks[j].key != NULL; j++) 392 if (strstr(info.vec[i], 393 info.interim_callbacks[j].key)) { 394 is_interim = 1; 395 396 ret = info.interim_callbacks[j].cb( 397 info.interim_callbacks[j].key, 398 info.vec[i], 399 info.interim_callbacks[j].val); 400 if (ret < 0) 401 return ret; 402 } 403 404 if (is_interim) 405 interim_cnt += 1; 406 } 407 } 408 409 if (interim_cnt) { 410 if (info.version == 21.4f) { 411 for (i = 0; i < interim_cnt; i++) 412 fprintf(info.fp_wr, "%s\n", info.vec[i]); 413 fprintf(info.fp_wr, "\n"); 414 415 if (info.nb_vec_lines == interim_cnt) 416 return 1; 417 } else { 418 for (i = 0; i < info.nb_vec_lines; i++) 419 fprintf(info.fp_wr, "%s\n", info.vec[i]); 420 fprintf(info.fp_wr, "\n"); 421 return 1; 422 } 423 } 424 425 info.vec_start_off = interim_cnt; 426 427 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) { 428 for (j = 0; info.callbacks[j].key != NULL; j++) 429 if (strstr(info.vec[i], info.callbacks[j].key)) { 430 ret = info.callbacks[j].cb( 431 info.callbacks[j].key, 432 info.vec[i], info.callbacks[j].val); 433 if (ret < 0) 434 return ret; 435 break; 436 } 437 } 438 439 return 0; 440 } 441 442 void 443 fips_test_write_one_case(void) 444 { 445 uint32_t i; 446 447 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) 448 fprintf(info.fp_wr, "%s\n", info.vec[i]); 449 } 450 451 #ifdef USE_JANSSON 452 int 453 fips_test_parse_one_json_vector_set(void) 454 { 455 json_t *algo_obj = json_object_get(json_info.json_vector_set, "algorithm"); 456 const char *algo_str = json_string_value(algo_obj); 457 458 /* Vector sets contain the algorithm type, and nothing else we need. */ 459 if (strstr(algo_str, "AES-GCM")) 460 info.algo = FIPS_TEST_ALGO_AES_GCM; 461 else if (strstr(algo_str, "HMAC")) 462 info.algo = FIPS_TEST_ALGO_HMAC; 463 else if (strstr(algo_str, "CMAC")) 464 info.algo = FIPS_TEST_ALGO_AES_CMAC; 465 else if (strstr(algo_str, "AES-CBC")) 466 info.algo = FIPS_TEST_ALGO_AES_CBC; 467 else if (strstr(algo_str, "AES-XTS")) 468 info.algo = FIPS_TEST_ALGO_AES_XTS; 469 else if (strstr(algo_str, "SHA")) 470 info.algo = FIPS_TEST_ALGO_SHA; 471 else 472 return -EINVAL; 473 474 return 0; 475 } 476 477 int 478 fips_test_parse_one_json_group(void) 479 { 480 int ret, i; 481 json_t *param; 482 483 if (info.interim_callbacks) { 484 char json_value[256]; 485 for (i = 0; info.interim_callbacks[i].key != NULL; i++) { 486 param = json_object_get(json_info.json_test_group, 487 info.interim_callbacks[i].key); 488 switch (json_typeof(param)) { 489 case JSON_STRING: 490 snprintf(json_value, 256, "%s", json_string_value(param)); 491 break; 492 493 case JSON_INTEGER: 494 snprintf(json_value, 255, "%"JSON_INTEGER_FORMAT, 495 json_integer_value(param)); 496 break; 497 498 default: 499 return -EINVAL; 500 } 501 502 /* First argument is blank because the key 503 * is not included in the string being parsed. 504 */ 505 ret = info.interim_callbacks[i].cb( 506 "", json_value, 507 info.interim_callbacks[i].val 508 ); 509 if (ret < 0) 510 return ret; 511 } 512 } 513 514 return 0; 515 } 516 517 int 518 fips_test_parse_one_json_case(void) 519 { 520 uint32_t i; 521 int ret = 0; 522 json_t *param; 523 524 for (i = 0; info.callbacks[i].key != NULL; i++) { 525 param = json_object_get(json_info.json_test_case, info.callbacks[i].key); 526 if (param) { 527 strcpy(info.one_line_text, json_string_value(param)); 528 /* First argument is blank because the key 529 * is not included in the string being parsed. 530 */ 531 ret = info.callbacks[i].cb( 532 "", info.one_line_text, 533 info.callbacks[i].val 534 ); 535 if (ret < 0) 536 return ret; 537 } 538 } 539 540 return 0; 541 } 542 #endif /* USE_JANSSON */ 543 544 static int 545 parser_read_uint64_hex(uint64_t *value, const char *p) 546 { 547 char *next; 548 uint64_t val; 549 550 p = skip_white_spaces(p); 551 552 val = strtoul(p, &next, 16); 553 if (p == next) 554 return -EINVAL; 555 556 p = skip_white_spaces(next); 557 if (*p != '\0') 558 return -EINVAL; 559 560 *value = val; 561 return 0; 562 } 563 564 int 565 parser_read_uint8_hex(uint8_t *value, const char *p) 566 { 567 uint64_t val = 0; 568 int ret = parser_read_uint64_hex(&val, p); 569 570 if (ret < 0) 571 return ret; 572 573 if (val > UINT8_MAX) 574 return -ERANGE; 575 576 *value = val; 577 return 0; 578 } 579 580 int 581 parse_uint8_known_len_hex_str(const char *key, char *src, struct fips_val *val) 582 { 583 struct fips_val tmp_val = {0}; 584 uint32_t len = val->len; 585 int ret; 586 587 if (len == 0) { 588 if (val->val != NULL) { 589 rte_free(val->val); 590 val->val = NULL; 591 } 592 593 return 0; 594 } 595 596 ret = parse_uint8_hex_str(key, src, &tmp_val); 597 if (ret < 0) 598 return ret; 599 600 if (tmp_val.len == val->len) { 601 val->val = tmp_val.val; 602 return 0; 603 } 604 605 if (tmp_val.len < val->len) { 606 rte_free(tmp_val.val); 607 return -EINVAL; 608 } 609 610 val->val = rte_zmalloc(NULL, val->len, 0); 611 if (!val->val) { 612 rte_free(tmp_val.val); 613 memset(val, 0, sizeof(*val)); 614 return -ENOMEM; 615 } 616 617 memcpy(val->val, tmp_val.val, val->len); 618 rte_free(tmp_val.val); 619 620 return 0; 621 } 622 623 int 624 parse_uint8_hex_str(const char *key, char *src, struct fips_val *val) 625 { 626 uint32_t len, j; 627 628 src += strlen(key); 629 630 len = strlen(src) / 2; 631 632 if (val->val) { 633 rte_free(val->val); 634 val->val = NULL; 635 } 636 637 val->val = rte_zmalloc(NULL, len + 1, 0); 638 if (!val->val) 639 return -ENOMEM; 640 641 for (j = 0; j < len; j++) { 642 char byte[3] = {src[j * 2], src[j * 2 + 1], '\0'}; 643 644 if (parser_read_uint8_hex(&val->val[j], byte) < 0) { 645 rte_free(val->val); 646 memset(val, 0, sizeof(*val)); 647 return -EINVAL; 648 } 649 } 650 651 val->len = len; 652 653 return 0; 654 } 655 656 int 657 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 658 { 659 char *data = src + strlen(key); 660 size_t data_len = strlen(data); 661 int ret; 662 663 if (data[data_len - 1] == ']') { 664 char *tmp_data = calloc(1, data_len + 1); 665 666 if (tmp_data == NULL) 667 return -ENOMEM; 668 669 strlcpy(tmp_data, data, data_len); 670 671 ret = parser_read_uint32(&val->len, tmp_data); 672 673 free(tmp_data); 674 } else 675 ret = parser_read_uint32(&val->len, data); 676 677 return ret; 678 } 679 680 int 681 parser_read_uint32_bit_val(const char *key, char *src, struct fips_val *val) 682 { 683 int ret; 684 685 ret = parser_read_uint32_val(key, src, val); 686 687 if (ret < 0) 688 return ret; 689 690 val->len /= 8; 691 692 return 0; 693 } 694 695 int 696 writeback_hex_str(const char *key, char *dst, struct fips_val *val) 697 { 698 char *str = dst; 699 uint32_t len; 700 701 str += strlen(key); 702 703 for (len = 0; len < val->len; len++) 704 snprintf(str + len * 2, 255, "%02x", val->val[len]); 705 706 return 0; 707 } 708 709 static int 710 parser_read_uint64(uint64_t *value, const char *p) 711 { 712 char *next; 713 uint64_t val; 714 715 p = skip_white_spaces(p); 716 if (!isdigit(*p)) 717 return -EINVAL; 718 719 val = strtoul(p, &next, 10); 720 if (p == next) 721 return -EINVAL; 722 723 p = next; 724 switch (*p) { 725 case 'T': 726 val *= 1024ULL; 727 /* fall through */ 728 case 'G': 729 val *= 1024ULL; 730 /* fall through */ 731 case 'M': 732 val *= 1024ULL; 733 /* fall through */ 734 case 'k': 735 case 'K': 736 val *= 1024ULL; 737 p++; 738 break; 739 } 740 741 p = skip_white_spaces(p); 742 if (*p != '\0') 743 return -EINVAL; 744 745 *value = val; 746 return 0; 747 } 748 749 int 750 parser_read_uint32(uint32_t *value, char *p) 751 { 752 uint64_t val = 0; 753 int ret = parser_read_uint64(&val, p); 754 755 if (ret < 0) 756 return ret; 757 758 if (val > UINT32_MAX) 759 return -EINVAL; 760 761 *value = val; 762 return 0; 763 } 764 765 int 766 parser_read_uint16(uint16_t *value, const char *p) 767 { 768 uint64_t val = 0; 769 int ret = parser_read_uint64(&val, p); 770 771 if (ret < 0) 772 return ret; 773 774 if (val > UINT16_MAX) 775 return -ERANGE; 776 777 *value = val; 778 return 0; 779 } 780 781 void 782 parse_write_hex_str(struct fips_val *src) 783 { 784 writeback_hex_str("", info.one_line_text, src); 785 786 fprintf(info.fp_wr, "%s\n", info.one_line_text); 787 } 788 789 int 790 update_info_vec(uint32_t count) 791 { 792 const struct fips_test_callback *cb; 793 uint32_t i, j; 794 795 if (!info.writeback_callbacks) 796 return -1; 797 798 cb = &info.writeback_callbacks[0]; 799 800 if ((info.version == 21.4f) && (!(strstr(info.vec[0], cb->key)))) { 801 fprintf(info.fp_wr, "%s%u\n", cb->key, count); 802 i = 0; 803 } else { 804 snprintf(info.vec[0], strlen(info.vec[0]) + 4, "%s%u", cb->key, 805 count); 806 i = 1; 807 } 808 809 for (; i < info.nb_vec_lines; i++) { 810 for (j = 1; info.writeback_callbacks[j].key != NULL; j++) { 811 cb = &info.writeback_callbacks[j]; 812 if (strstr(info.vec[i], cb->key)) { 813 cb->cb(cb->key, info.vec[i], cb->val); 814 break; 815 } 816 } 817 } 818 819 return 0; 820 } 821