1 /* SPDX-License-Identifier: BSD-3-Clause 2 * Copyright(c) 2018 Intel Corporation 3 */ 4 5 #include <ctype.h> 6 #include <stdio.h> 7 #include <stdlib.h> 8 #include <string.h> 9 10 #include <rte_string_fns.h> 11 #include <rte_cryptodev.h> 12 #include <rte_malloc.h> 13 14 #include "fips_validation.h" 15 16 #define skip_white_spaces(pos) \ 17 ({ \ 18 __typeof__(pos) _p = (pos); \ 19 for ( ; isspace(*_p); _p++) \ 20 ; \ 21 _p; \ 22 }) 23 24 static int 25 get_file_line(void) 26 { 27 FILE *fp = info.fp_rd; 28 char *line = info.one_line_text; 29 int ret; 30 uint32_t loc = 0; 31 32 memset(line, 0, MAX_LINE_CHAR); 33 while ((ret = fgetc(fp)) != EOF) { 34 char c = (char)ret; 35 36 if (loc >= MAX_LINE_CHAR - 1) 37 return -ENOMEM; 38 if (c == '\n') 39 break; 40 line[loc++] = c; 41 } 42 43 if (ret == EOF) 44 return -EOF; 45 46 return 0; 47 } 48 49 int 50 fips_test_fetch_one_block(void) 51 { 52 size_t size; 53 int ret = 0; 54 uint32_t i; 55 56 for (i = 0; i < info.nb_vec_lines; i++) { 57 free(info.vec[i]); 58 info.vec[i] = NULL; 59 } 60 61 i = 0; 62 do { 63 if (i >= MAX_LINE_PER_VECTOR) { 64 ret = -ENOMEM; 65 goto error_exit; 66 } 67 68 ret = get_file_line(); 69 size = strlen(info.one_line_text); 70 if (size == 0) 71 break; 72 73 info.vec[i] = calloc(1, size + 5); 74 if (info.vec[i] == NULL) 75 goto error_exit; 76 77 strlcpy(info.vec[i], info.one_line_text, size + 1); 78 i++; 79 } while (ret == 0); 80 81 info.nb_vec_lines = i; 82 83 return ret; 84 85 error_exit: 86 for (i = 0; i < MAX_LINE_PER_VECTOR; i++) 87 if (info.vec[i] != NULL) { 88 free(info.vec[i]); 89 info.vec[i] = NULL; 90 } 91 92 info.nb_vec_lines = 0; 93 94 return -ENOMEM; 95 } 96 97 static void 98 fips_test_parse_version(void) 99 { 100 int len = strlen(info.vec[0]); 101 char *ptr = info.vec[0]; 102 103 info.version = strtof(ptr + len - 4, NULL); 104 } 105 106 static int 107 fips_test_parse_header(void) 108 { 109 uint32_t i; 110 char *tmp; 111 int ret; 112 int algo_parsed = 0; 113 time_t t = time(NULL); 114 struct tm *tm_now = localtime(&t); 115 116 ret = fips_test_fetch_one_block(); 117 if (ret < 0) 118 return ret; 119 120 if (info.nb_vec_lines) 121 fips_test_parse_version(); 122 123 for (i = 0; i < info.nb_vec_lines; i++) { 124 if (!algo_parsed) { 125 if (strstr(info.vec[i], "AES")) { 126 algo_parsed = 1; 127 info.algo = FIPS_TEST_ALGO_AES; 128 ret = parse_test_aes_init(); 129 if (ret < 0) 130 return ret; 131 } else if (strstr(info.vec[i], "GCM")) { 132 algo_parsed = 1; 133 info.algo = FIPS_TEST_ALGO_AES_GCM; 134 ret = parse_test_gcm_init(); 135 if (ret < 0) 136 return ret; 137 } else if (strstr(info.vec[i], "CMAC")) { 138 algo_parsed = 1; 139 info.algo = FIPS_TEST_ALGO_AES_CMAC; 140 ret = parse_test_cmac_init(); 141 if (ret < 0) 142 return 0; 143 } else if (strstr(info.vec[i], "CCM")) { 144 algo_parsed = 1; 145 info.algo = FIPS_TEST_ALGO_AES_CCM; 146 ret = parse_test_ccm_init(); 147 if (ret < 0) 148 return 0; 149 } else if (strstr(info.vec[i], "HMAC")) { 150 algo_parsed = 1; 151 info.algo = FIPS_TEST_ALGO_HMAC; 152 ret = parse_test_hmac_init(); 153 if (ret < 0) 154 return ret; 155 } else if (strstr(info.vec[i], "TDES")) { 156 algo_parsed = 1; 157 info.algo = FIPS_TEST_ALGO_TDES; 158 ret = parse_test_tdes_init(); 159 if (ret < 0) 160 return 0; 161 } else if (strstr(info.vec[i], "PERMUTATION")) { 162 algo_parsed = 1; 163 info.algo = FIPS_TEST_ALGO_TDES; 164 ret = parse_test_tdes_init(); 165 if (ret < 0) 166 return 0; 167 } else if (strstr(info.vec[i], "VARIABLE")) { 168 algo_parsed = 1; 169 info.algo = FIPS_TEST_ALGO_TDES; 170 ret = parse_test_tdes_init(); 171 if (ret < 0) 172 return 0; 173 } else if (strstr(info.vec[i], "SUBSTITUTION")) { 174 algo_parsed = 1; 175 info.algo = FIPS_TEST_ALGO_TDES; 176 ret = parse_test_tdes_init(); 177 if (ret < 0) 178 return 0; 179 } else if (strstr(info.vec[i], "SHA-")) { 180 algo_parsed = 1; 181 info.algo = FIPS_TEST_ALGO_SHA; 182 ret = parse_test_sha_init(); 183 if (ret < 0) 184 return ret; 185 } else if (strstr(info.vec[i], "XTS")) { 186 algo_parsed = 1; 187 info.algo = FIPS_TEST_ALGO_AES_XTS; 188 ret = parse_test_xts_init(); 189 if (ret < 0) 190 return ret; 191 } 192 } 193 194 tmp = strstr(info.vec[i], "# Config info for "); 195 if (tmp != NULL) { 196 fprintf(info.fp_wr, "%s%s\n", "# Config info for DPDK Cryptodev ", 197 info.device_name); 198 continue; 199 } 200 201 tmp = strstr(info.vec[i], "# HMAC information for "); 202 if (tmp != NULL) { 203 fprintf(info.fp_wr, "%s%s\n", "# HMAC information for " 204 "DPDK Cryptodev ", 205 info.device_name); 206 continue; 207 } 208 209 tmp = strstr(info.vec[i], "# Config Info for : "); 210 if (tmp != NULL) { 211 212 fprintf(info.fp_wr, "%s%s\n", "# Config Info for DPDK Cryptodev : ", 213 info.device_name); 214 continue; 215 } 216 217 tmp = strstr(info.vec[i], "# information for "); 218 if (tmp != NULL) { 219 220 char tmp_output[128] = {0}; 221 222 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 223 224 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 225 "information for DPDK Cryptodev ", 226 info.device_name); 227 continue; 228 } 229 230 tmp = strstr(info.vec[i], " test information for "); 231 if (tmp != NULL) { 232 char tmp_output[128] = {0}; 233 234 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 235 236 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 237 "test information for DPDK Cryptodev ", 238 info.device_name); 239 continue; 240 } 241 242 tmp = strstr(info.vec[i], "\" information for \""); 243 if (tmp != NULL) { 244 char tmp_output[128] = {0}; 245 246 strlcpy(tmp_output, info.vec[i], tmp - info.vec[i] + 1); 247 248 fprintf(info.fp_wr, "%s%s%s\n", tmp_output, 249 "\" information for DPDK Cryptodev ", 250 info.device_name); 251 continue; 252 } 253 254 if (i == info.nb_vec_lines - 1) { 255 /** update the time as current time, write to file */ 256 fprintf(info.fp_wr, "%s%s\n", "# Generated on ", 257 asctime(tm_now)); 258 continue; 259 } 260 261 /* to this point, no field need to update, 262 * only copy to rsp file 263 */ 264 fprintf(info.fp_wr, "%s\n", info.vec[i]); 265 } 266 267 return 0; 268 } 269 270 static int 271 parse_file_type(const char *path) 272 { 273 const char *tmp = path + strlen(path) - 3; 274 275 if (strstr(tmp, REQ_FILE_PREFIX)) 276 info.file_type = FIPS_TYPE_REQ; 277 else if (strstr(tmp, RSP_FILE_PREFIX)) 278 info.file_type = FIPS_TYPE_RSP; 279 else if (strstr(path, FAX_FILE_PREFIX)) 280 info.file_type = FIPS_TYPE_FAX; 281 else if (strstr(path, JSON_FILE_PREFIX)) 282 info.file_type = FIPS_TYPE_JSON; 283 else 284 return -EINVAL; 285 286 return 0; 287 } 288 289 int 290 fips_test_init(const char *req_file_path, const char *rsp_file_path, 291 const char *device_name) 292 { 293 if (strcmp(req_file_path, rsp_file_path) == 0) { 294 RTE_LOG(ERR, USER1, "File paths cannot be the same\n"); 295 return -EINVAL; 296 } 297 298 fips_test_clear(); 299 300 if (rte_strscpy(info.file_name, req_file_path, 301 sizeof(info.file_name)) < 0) { 302 RTE_LOG(ERR, USER1, "Path %s too long\n", req_file_path); 303 return -EINVAL; 304 } 305 info.algo = FIPS_TEST_ALGO_MAX; 306 if (parse_file_type(req_file_path) < 0) { 307 RTE_LOG(ERR, USER1, "File %s type not supported\n", 308 req_file_path); 309 return -EINVAL; 310 } 311 312 info.fp_rd = fopen(req_file_path, "r"); 313 if (!info.fp_rd) { 314 RTE_LOG(ERR, USER1, "Cannot open file %s\n", req_file_path); 315 return -EINVAL; 316 } 317 318 if (info.file_type == FIPS_TYPE_JSON) { 319 #ifdef USE_JANSSON 320 json_error_t error; 321 json_info.json_root = json_loadf(info.fp_rd, 0, &error); 322 if (!json_info.json_root) { 323 RTE_LOG(ERR, USER1, "Cannot parse json file %s (line %d, column %d)\n", 324 req_file_path, error.line, error.column); 325 return -EINVAL; 326 } 327 #else /* USE_JANSSON */ 328 RTE_LOG(ERR, USER1, "No json library configured.\n"); 329 return -EINVAL; 330 #endif /* USE_JANSSON */ 331 } 332 333 info.fp_wr = fopen(rsp_file_path, "w"); 334 if (!info.fp_wr) { 335 RTE_LOG(ERR, USER1, "Cannot open file %s\n", rsp_file_path); 336 return -EINVAL; 337 } 338 339 info.one_line_text = calloc(1, MAX_LINE_CHAR); 340 if (!info.one_line_text) { 341 RTE_LOG(ERR, USER1, "Insufficient memory\n"); 342 return -ENOMEM; 343 } 344 345 if (rte_strscpy(info.device_name, device_name, 346 sizeof(info.device_name)) < 0) { 347 RTE_LOG(ERR, USER1, "Device name %s too long\n", device_name); 348 return -EINVAL; 349 } 350 351 if (info.file_type == FIPS_TYPE_JSON) 352 return 0; 353 354 if (fips_test_parse_header() < 0) { 355 RTE_LOG(ERR, USER1, "Failed parsing header\n"); 356 return -1; 357 } 358 359 return 0; 360 } 361 362 void 363 fips_test_clear(void) 364 { 365 if (info.fp_rd) 366 fclose(info.fp_rd); 367 if (info.fp_wr) 368 fclose(info.fp_wr); 369 free(info.one_line_text); 370 if (info.nb_vec_lines) { 371 uint32_t i; 372 373 for (i = 0; i < info.nb_vec_lines; i++) 374 free(info.vec[i]); 375 } 376 377 memset(&info, 0, sizeof(info)); 378 } 379 380 int 381 fips_test_parse_one_case(void) 382 { 383 uint32_t i, j = 0; 384 uint32_t is_interim; 385 uint32_t interim_cnt = 0; 386 int ret; 387 388 info.vec_start_off = 0; 389 390 if (info.interim_callbacks) { 391 for (i = 0; i < info.nb_vec_lines; i++) { 392 is_interim = 0; 393 for (j = 0; info.interim_callbacks[j].key != NULL; j++) 394 if (strstr(info.vec[i], 395 info.interim_callbacks[j].key)) { 396 is_interim = 1; 397 398 ret = info.interim_callbacks[j].cb( 399 info.interim_callbacks[j].key, 400 info.vec[i], 401 info.interim_callbacks[j].val); 402 if (ret < 0) 403 return ret; 404 } 405 406 if (is_interim) 407 interim_cnt += 1; 408 } 409 } 410 411 if (interim_cnt) { 412 if (info.version == 21.4f) { 413 for (i = 0; i < interim_cnt; i++) 414 fprintf(info.fp_wr, "%s\n", info.vec[i]); 415 fprintf(info.fp_wr, "\n"); 416 417 if (info.nb_vec_lines == interim_cnt) 418 return 1; 419 } else { 420 for (i = 0; i < info.nb_vec_lines; i++) 421 fprintf(info.fp_wr, "%s\n", info.vec[i]); 422 fprintf(info.fp_wr, "\n"); 423 return 1; 424 } 425 } 426 427 info.vec_start_off = interim_cnt; 428 429 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) { 430 for (j = 0; info.callbacks[j].key != NULL; j++) 431 if (strstr(info.vec[i], info.callbacks[j].key)) { 432 ret = info.callbacks[j].cb( 433 info.callbacks[j].key, 434 info.vec[i], info.callbacks[j].val); 435 if (ret < 0) 436 return ret; 437 break; 438 } 439 } 440 441 return 0; 442 } 443 444 void 445 fips_test_write_one_case(void) 446 { 447 uint32_t i; 448 449 for (i = info.vec_start_off; i < info.nb_vec_lines; i++) 450 fprintf(info.fp_wr, "%s\n", info.vec[i]); 451 } 452 453 #ifdef USE_JANSSON 454 int 455 fips_test_parse_one_json_vector_set(void) 456 { 457 json_t *algo_obj = json_object_get(json_info.json_vector_set, "algorithm"); 458 const char *algo_str = json_string_value(algo_obj); 459 460 /* Vector sets contain the algorithm type, and nothing else we need. */ 461 if (strstr(algo_str, "AES-GCM")) 462 info.algo = FIPS_TEST_ALGO_AES_GCM; 463 else if (strstr(algo_str, "AES-GMAC")) 464 info.algo = FIPS_TEST_ALGO_AES_GMAC; 465 else if (strstr(algo_str, "HMAC")) 466 info.algo = FIPS_TEST_ALGO_HMAC; 467 else if (strstr(algo_str, "CMAC")) 468 info.algo = FIPS_TEST_ALGO_AES_CMAC; 469 else if (strstr(algo_str, "AES-CBC")) 470 info.algo = FIPS_TEST_ALGO_AES_CBC; 471 else if (strstr(algo_str, "AES-XTS")) 472 info.algo = FIPS_TEST_ALGO_AES_XTS; 473 else if (strstr(algo_str, "SHA")) 474 info.algo = FIPS_TEST_ALGO_SHA; 475 else if (strstr(algo_str, "TDES-CBC") || 476 strstr(algo_str, "TDES-ECB")) 477 info.algo = FIPS_TEST_ALGO_TDES; 478 else 479 return -EINVAL; 480 481 return 0; 482 } 483 484 int 485 fips_test_parse_one_json_group(void) 486 { 487 int ret, i; 488 json_t *param; 489 490 if (info.interim_callbacks) { 491 char json_value[FIPS_TEST_JSON_BUF_LEN]; 492 for (i = 0; info.interim_callbacks[i].key != NULL; i++) { 493 param = json_object_get(json_info.json_test_group, 494 info.interim_callbacks[i].key); 495 if (!param) 496 continue; 497 498 switch (json_typeof(param)) { 499 case JSON_STRING: 500 snprintf(json_value, sizeof(json_value), "%s", 501 json_string_value(param)); 502 break; 503 504 case JSON_INTEGER: 505 snprintf(json_value, sizeof(json_value), "%"JSON_INTEGER_FORMAT, 506 json_integer_value(param)); 507 break; 508 509 default: 510 return -EINVAL; 511 } 512 513 ret = info.interim_callbacks[i].cb( 514 info.interim_callbacks[i].key, json_value, 515 info.interim_callbacks[i].val 516 ); 517 if (ret < 0) 518 return ret; 519 } 520 521 if (info.parse_interim_writeback) { 522 ret = info.parse_interim_writeback(NULL); 523 if (ret < 0) 524 return ret; 525 } 526 } 527 528 return 0; 529 } 530 531 int 532 fips_test_parse_one_json_case(void) 533 { 534 uint32_t i; 535 int ret = 0; 536 json_t *param; 537 538 for (i = 0; info.callbacks[i].key != NULL; i++) { 539 param = json_object_get(json_info.json_test_case, info.callbacks[i].key); 540 if (param) { 541 strcpy(info.one_line_text, json_string_value(param)); 542 ret = info.callbacks[i].cb( 543 info.callbacks[i].key, info.one_line_text, 544 info.callbacks[i].val 545 ); 546 if (ret < 0) 547 return ret; 548 } 549 } 550 551 return 0; 552 } 553 #endif /* USE_JANSSON */ 554 555 static int 556 parser_read_uint64_hex(uint64_t *value, const char *p) 557 { 558 char *next; 559 uint64_t val; 560 561 p = skip_white_spaces(p); 562 563 val = strtoul(p, &next, 16); 564 if (p == next) 565 return -EINVAL; 566 567 p = skip_white_spaces(next); 568 if (*p != '\0') 569 return -EINVAL; 570 571 *value = val; 572 return 0; 573 } 574 575 int 576 parser_read_uint8_hex(uint8_t *value, const char *p) 577 { 578 uint64_t val = 0; 579 int ret = parser_read_uint64_hex(&val, p); 580 581 if (ret < 0) 582 return ret; 583 584 if (val > UINT8_MAX) 585 return -ERANGE; 586 587 *value = val; 588 return 0; 589 } 590 591 int 592 parse_uint8_known_len_hex_str(const char *key, char *src, struct fips_val *val) 593 { 594 struct fips_val tmp_val = {0}; 595 uint32_t len = val->len; 596 int ret; 597 598 if (len == 0) { 599 if (val->val != NULL) { 600 rte_free(val->val); 601 val->val = NULL; 602 } 603 604 return 0; 605 } 606 607 ret = parse_uint8_hex_str(key, src, &tmp_val); 608 if (ret < 0) 609 return ret; 610 611 if (tmp_val.len == val->len) { 612 val->val = tmp_val.val; 613 return 0; 614 } 615 616 if (tmp_val.len < val->len) { 617 rte_free(tmp_val.val); 618 return -EINVAL; 619 } 620 621 val->val = rte_zmalloc(NULL, val->len, 0); 622 if (!val->val) { 623 rte_free(tmp_val.val); 624 memset(val, 0, sizeof(*val)); 625 return -ENOMEM; 626 } 627 628 memcpy(val->val, tmp_val.val, val->len); 629 rte_free(tmp_val.val); 630 631 return 0; 632 } 633 634 int 635 parse_uint8_hex_str(const char *key, char *src, struct fips_val *val) 636 { 637 uint32_t len, j; 638 639 #ifdef USE_JANSSON 640 /* 641 * Offset not applicable in case of JSON test vectors. 642 */ 643 RTE_SET_USED(key); 644 #else 645 src += strlen(key); 646 #endif 647 648 len = strlen(src) / 2; 649 650 if (val->val) { 651 rte_free(val->val); 652 val->val = NULL; 653 } 654 655 val->val = rte_zmalloc(NULL, len + 1, 0); 656 if (!val->val) 657 return -ENOMEM; 658 659 for (j = 0; j < len; j++) { 660 char byte[3] = {src[j * 2], src[j * 2 + 1], '\0'}; 661 662 if (parser_read_uint8_hex(&val->val[j], byte) < 0) { 663 rte_free(val->val); 664 memset(val, 0, sizeof(*val)); 665 return -EINVAL; 666 } 667 } 668 669 val->len = len; 670 671 return 0; 672 } 673 674 #ifdef USE_JANSSON 675 int 676 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 677 { 678 RTE_SET_USED(key); 679 680 return parser_read_uint32(&val->len, src); 681 } 682 #else 683 int 684 parser_read_uint32_val(const char *key, char *src, struct fips_val *val) 685 { 686 char *data = src + strlen(key); 687 size_t data_len = strlen(data); 688 int ret; 689 690 if (data[data_len - 1] == ']') { 691 char *tmp_data = calloc(1, data_len + 1); 692 693 if (tmp_data == NULL) 694 return -ENOMEM; 695 696 strlcpy(tmp_data, data, data_len); 697 698 ret = parser_read_uint32(&val->len, tmp_data); 699 700 free(tmp_data); 701 } else 702 ret = parser_read_uint32(&val->len, data); 703 704 return ret; 705 } 706 #endif 707 708 int 709 parser_read_uint32_bit_val(const char *key, char *src, struct fips_val *val) 710 { 711 int ret; 712 713 ret = parser_read_uint32_val(key, src, val); 714 715 if (ret < 0) 716 return ret; 717 718 val->len /= 8; 719 720 return 0; 721 } 722 723 int 724 writeback_hex_str(const char *key, char *dst, struct fips_val *val) 725 { 726 char *str = dst; 727 uint32_t len; 728 729 str += strlen(key); 730 731 for (len = 0; len < val->len; len++) 732 snprintf(str + len * 2, 255, "%02x", val->val[len]); 733 734 return 0; 735 } 736 737 static int 738 parser_read_uint64(uint64_t *value, const char *p) 739 { 740 char *next; 741 uint64_t val; 742 743 p = skip_white_spaces(p); 744 if (!isdigit(*p)) 745 return -EINVAL; 746 747 val = strtoul(p, &next, 10); 748 if (p == next) 749 return -EINVAL; 750 751 p = next; 752 switch (*p) { 753 case 'T': 754 val *= 1024ULL; 755 /* fall through */ 756 case 'G': 757 val *= 1024ULL; 758 /* fall through */ 759 case 'M': 760 val *= 1024ULL; 761 /* fall through */ 762 case 'k': 763 case 'K': 764 val *= 1024ULL; 765 p++; 766 break; 767 } 768 769 p = skip_white_spaces(p); 770 if (*p != '\0') 771 return -EINVAL; 772 773 *value = val; 774 return 0; 775 } 776 777 int 778 parser_read_uint32(uint32_t *value, char *p) 779 { 780 uint64_t val = 0; 781 int ret = parser_read_uint64(&val, p); 782 783 if (ret < 0) 784 return ret; 785 786 if (val > UINT32_MAX) 787 return -EINVAL; 788 789 *value = val; 790 return 0; 791 } 792 793 int 794 parser_read_uint16(uint16_t *value, const char *p) 795 { 796 uint64_t val = 0; 797 int ret = parser_read_uint64(&val, p); 798 799 if (ret < 0) 800 return ret; 801 802 if (val > UINT16_MAX) 803 return -ERANGE; 804 805 *value = val; 806 return 0; 807 } 808 809 void 810 parse_write_hex_str(struct fips_val *src) 811 { 812 writeback_hex_str("", info.one_line_text, src); 813 814 fprintf(info.fp_wr, "%s\n", info.one_line_text); 815 } 816 817 int 818 update_info_vec(uint32_t count) 819 { 820 const struct fips_test_callback *cb; 821 uint32_t i, j; 822 823 if (!info.writeback_callbacks) 824 return -1; 825 826 cb = &info.writeback_callbacks[0]; 827 828 if ((info.version == 21.4f) && (!(strstr(info.vec[0], cb->key)))) { 829 fprintf(info.fp_wr, "%s%u\n", cb->key, count); 830 i = 0; 831 } else { 832 snprintf(info.vec[0], strlen(info.vec[0]) + 4, "%s%u", cb->key, 833 count); 834 i = 1; 835 } 836 837 for (; i < info.nb_vec_lines; i++) { 838 for (j = 1; info.writeback_callbacks[j].key != NULL; j++) { 839 cb = &info.writeback_callbacks[j]; 840 if (strstr(info.vec[i], cb->key)) { 841 cb->cb(cb->key, info.vec[i], cb->val); 842 break; 843 } 844 } 845 } 846 847 return 0; 848 } 849