| blob | 7ed7d0fd9144551667d6cac43dc9a2d4083147e8 |
1 /*
2 * CDDL HEADER START
3 *
4 * The contents of this file are subject to the terms of the
5 * Common Development and Distribution License (the "License").
6 * You may not use this file except in compliance with the License.
7 *
8 * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 * or http://www.opensolaris.org/os/licensing.
10 * See the License for the specific language governing permissions
11 * and limitations under the License.
12 *
13 * When distributing Covered Code, include this CDDL HEADER in each
14 * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 * If applicable, add the following below this CDDL HEADER, with the
16 * fields enclosed by brackets "[]" replaced with your own identifying
17 * information: Portions Copyright [yyyy] [name of copyright owner]
18 *
19 * CDDL HEADER END
20 */
21 /*
22 * Copyright (c) 2003, 2010, Oracle and/or its affiliates. All rights reserved.
23 */
25 #include <sys/errno.h>
26 #include <sys/types.h>
27 #include <sys/kmem.h>
28 #include <sys/cmn_err.h>
29 #include <sys/sysmacros.h>
30 #include <sys/crypto/common.h>
31 #include <sys/crypto/impl.h>
32 #include <sys/crypto/api.h>
33 #include <sys/crypto/spi.h>
34 #include <sys/crypto/sched_impl.h>
36 #define CRYPTO_OPS_OFFSET(f) offsetof(crypto_ops_t, co_##f)
37 #define CRYPTO_DIGEST_OFFSET(f) offsetof(crypto_digest_ops_t, f)
39 /*
40 * Message digest routines
41 */
43 /*
44 * The following are the possible returned values common to all the routines
45 * below. The applicability of some of these return values depends on the
46 * presence of the arguments.
47 *
48 * CRYPTO_SUCCESS: The operation completed successfully.
49 * CRYPTO_QUEUED: A request was submitted successfully. The callback
50 * routine will be called when the operation is done.
51 * CRYPTO_MECHANISM_INVALID or CRYPTO_INVALID_MECH_PARAM
52 * for problems with the 'mech'.
53 * CRYPTO_INVALID_DATA for bogus 'data'
54 * CRYPTO_HOST_MEMORY for failure to allocate memory to handle this work.
55 * CRYPTO_INVALID_CONTEXT: Not a valid context.
56 * CRYPTO_BUSY: Cannot process the request now. Schedule a
57 * crypto_bufcall(), or try later.
58 * CRYPTO_NOT_SUPPORTED and CRYPTO_MECH_NOT_SUPPORTED:
59 * No provider is capable of a function or a mechanism.
60 */
63 /*
64 * crypto_digest_prov()
65 *
66 * Arguments:
67 * pd: pointer to the descriptor of the provider to use for this
68 * operation.
69 * sid: provider session id.
70 * mech: crypto_mechanism_t pointer.
71 * mech_type is a valid value previously returned by
72 * crypto_mech2id();
73 * When the mech's parameter is not NULL, its definition depends
74 * on the standard definition of the mechanism.
75 * data: The message to be digested.
76 * digest: Storage for the digest. The length needed depends on the
77 * mechanism.
78 * cr: crypto_call_req_t calling conditions and call back info.
79 *
80 * Description:
81 * Asynchronously submits a request for, or synchronously performs the
82 * digesting operation of 'data' on the specified
83 * provider with the specified session.
84 * When complete and successful, 'digest' will contain the digest value.
85 * The caller should hold a reference on the specified provider
86 * descriptor before calling this function.
87 *
88 * Context:
89 * Process or interrupt, according to the semantics dictated by the 'cr'.
90 *
91 * Returns:
92 * See comment in the beginning of the file.
93 */
94 int
98 {
99 kcf_req_params_t params;
109 CRYPTO_FG_DIGEST_ATOMIC);
113 }
117 /* no crypto context to carry between multiple parts. */
123 }
125 /*
126 * Same as crypto_digest_prov(), but relies on the KCF scheduler to
127 * choose a provider. See crypto_digest_prov() comments for more information.
128 */
129 int
132 {
135 kcf_req_params_t params;
138 retry:
139 /* The pd is returned held */
145 }
147 /* The fast path for SW providers. */
149 crypto_mechanism_t lmech;
165 /* no crypto context to carry between multiple parts. */
167 B_FALSE);
168 }
169 }
173 /* Add pd to the linked list of providers tried. */
176 }
183 }
185 /*
186 * crypto_digest_init_prov()
187 *
188 * pd: pointer to the descriptor of the provider to use for this
189 * operation.
190 * sid: provider session id.
191 * mech: crypto_mechanism_t pointer.
192 * mech_type is a valid value previously returned by
193 * crypto_mech2id();
194 * When the mech's parameter is not NULL, its definition depends
195 * on the standard definition of the mechanism.
196 * ctxp: Pointer to a crypto_context_t.
197 * cr: crypto_call_req_t calling conditions and call back info.
198 *
199 * Description:
200 * Asynchronously submits a request for, or synchronously performs the
201 * initialization of a message digest operation on the specified
202 * provider with the specified session.
203 * When complete and successful, 'ctxp' will contain a crypto_context_t
204 * valid for later calls to digest_update() and digest_final().
205 * The caller should hold a reference on the specified provider
206 * descriptor before calling this function.
207 */
208 int
211 {
214 kcf_req_params_t params;
223 CRYPTO_FG_DIGEST);
227 }
229 /* Allocate and initialize the canonical context */
234 }
236 /* The fast path for SW providers. */
238 crypto_mechanism_t lmech;
249 B_FALSE);
250 }
258 /* Release the hold done in kcf_new_ctx(). */
260 }
263 }
266 /*
267 * Same as crypto_digest_init_prov(), but relies on the KCF scheduler
268 * to choose a provider. See crypto_digest_init_prov() comments for
269 * more information.
270 */
271 int
274 {
279 retry:
280 /* The pd is returned held */
286 }
290 /*
291 * The hardware provider has limited digest support.
292 * So, we fallback early here to using a software provider.
293 *
294 * XXX - need to enhance to do the fallback later in
295 * crypto_digest_update() if the size of accumulated input data
296 * exceeds the maximum size digestable by hardware provider.
297 */
302 }
306 /* Add pd to the linked list of providers tried. */
309 }
315 }
317 /*
318 * crypto_digest_update()
319 *
320 * Arguments:
321 * context: A crypto_context_t initialized by digest_init().
322 * data: The part of message to be digested.
323 * cr: crypto_call_req_t calling conditions and call back info.
324 *
325 * Description:
326 * Asynchronously submits a request for, or synchronously performs a
327 * part of a message digest operation.
328 *
329 * Context:
330 * Process or interrupt, according to the semantics dictated by the 'cr'.
331 *
332 * Returns:
333 * See comment in the beginning of the file.
334 */
335 int
338 {
343 kcf_req_params_t params;
349 }
353 /* The fast path for SW providers. */
361 }
364 }
366 /*
367 * crypto_digest_final()
368 *
369 * Arguments:
370 * context: A crypto_context_t initialized by digest_init().
371 * digest: The storage for the digest.
372 * cr: crypto_call_req_t calling conditions and call back info.
373 *
374 * Description:
375 * Asynchronously submits a request for, or synchronously performs the
376 * final part of a message digest operation.
377 *
378 * Context:
379 * Process or interrupt, according to the semantics dictated by the 'cr'.
380 *
381 * Returns:
382 * See comment in the beginning of the file.
383 */
384 int
387 {
392 kcf_req_params_t params;
398 }
402 /* The fast path for SW providers. */
410 }
412 /* Release the hold done in kcf_new_ctx() during init step. */
415 }
417 /*
418 * Performs a digest update on the specified key. Note that there is
419 * no k-API crypto_digest_key() equivalent of this function.
420 */
421 int
424 {
429 kcf_req_params_t params;
435 }
439 /* The fast path for SW providers. */
447 }
450 }
452 /*
453 * See comments for crypto_digest_update() and crypto_digest_final().
454 */
455 int
458 {
463 kcf_req_params_t params;
469 }
472 /* The fast path for SW providers. */
480 }
482 /* Release the hold done in kcf_new_ctx() during init step. */
485 }