1 /*-
2 * Copyright (c) 2018 Conrad Meyer <cem@FreeBSD.org>
3 * All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * 1. Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * 2. Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in the
12 * documentation and/or other materials provided with the distribution.
13 *
14 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
15 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
16 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
17 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
18 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
19 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
20 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
21 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
22 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
23 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
24 * SUCH DAMAGE.
25 */
26
27 /*
28 * Derived from blake2b-test.c and blake2s-test.c:
29 *
30 * BLAKE2 reference source code package - optimized C implementations
31 *
32 * Written in 2012 by Samuel Neves <sneves@dei.uc.pt>
33 *
34 * To the extent possible under law, the author(s) have dedicated all copyright
35 * and related and neighboring rights to this software to the public domain
36 * worldwide. This software is distributed without any warranty.
37 *
38 * You should have received a copy of the CC0 Public Domain Dedication along with
39 * this software. If not, see <http://creativecommons.org/publicdomain/zero/1.0/>.
40 */
41
42 #include <sys/param.h>
43
44 #include <errno.h>
45 #include <fcntl.h>
46 #include <string.h>
47
48 #include <atf-c.h>
49
50 /* Be sure to include tree copy rather than system copy. */
51 #include "cryptodev.h"
52
53 #include "freebsd_test_suite/macros.h"
54
55 #include <blake2.h>
56 #include "blake2-kat.h"
57
58 static uint8_t key2b[BLAKE2B_KEYBYTES];
59 static uint8_t key2s[BLAKE2S_KEYBYTES];
60 static uint8_t katbuf[KAT_LENGTH];
61
62 static void
initialize_constant_buffers(void)63 initialize_constant_buffers(void)
64 {
65 size_t i;
66
67 for (i = 0; i < sizeof(key2b); i++)
68 key2b[i] = (uint8_t)i;
69 for (i = 0; i < sizeof(key2s); i++)
70 key2s[i] = (uint8_t)i;
71 for (i = 0; i < sizeof(katbuf); i++)
72 katbuf[i] = (uint8_t)i;
73 }
74
75 static int
lookup_crid(int fd,const char * devname)76 lookup_crid(int fd, const char *devname)
77 {
78 struct crypt_find_op find;
79
80 find.crid = -1;
81 strlcpy(find.name, devname, sizeof(find.name));
82 ATF_REQUIRE(ioctl(fd, CIOCFINDDEV, &find) != -1);
83 return (find.crid);
84 }
85
86 static int
get_handle_fd(void)87 get_handle_fd(void)
88 {
89 int fd;
90
91 fd = open("/dev/crypto", O_RDWR);
92 ATF_REQUIRE(fd >= 0);
93 return (fd);
94 }
95
96 static int
create_session(int fd,int alg,int crid,const void * key,size_t klen)97 create_session(int fd, int alg, int crid, const void *key, size_t klen)
98 {
99 struct session2_op sop;
100
101 memset(&sop, 0, sizeof(sop));
102
103 sop.mac = alg;
104 sop.mackey = key;
105 sop.mackeylen = klen;
106 sop.crid = crid;
107
108 ATF_REQUIRE_MSG(ioctl(fd, CIOCGSESSION2, &sop) >= 0,
109 "alg %d keylen %zu, errno=%d (%s)", alg, klen, errno,
110 strerror(errno));
111 return (sop.ses);
112 }
113
114 static void
do_cryptop(int fd,int ses,size_t inlen,void * out)115 do_cryptop(int fd, int ses, size_t inlen, void *out)
116 {
117 struct crypt_op cop;
118
119 memset(&cop, 0, sizeof(cop));
120
121 cop.ses = ses;
122 cop.len = inlen;
123 cop.src = katbuf;
124 cop.mac = out;
125 ATF_CHECK_MSG(ioctl(fd, CIOCCRYPT, &cop) >= 0, "ioctl(CIOCCRYPT)");
126 }
127
128 static void
test_blake2b_vectors(const char * devname,const char * modname)129 test_blake2b_vectors(const char *devname, const char *modname)
130 {
131 uint8_t hash[BLAKE2B_OUTBYTES];
132 int crid, fd, ses;
133 size_t i;
134
135 ATF_REQUIRE_KERNEL_MODULE(modname);
136 ATF_REQUIRE_KERNEL_MODULE("cryptodev");
137
138 initialize_constant_buffers();
139 fd = get_handle_fd();
140 crid = lookup_crid(fd, devname);
141 ses = create_session(fd, CRYPTO_BLAKE2B, crid, key2b, sizeof(key2b));
142
143 for (i = 0; i < sizeof(katbuf); i++) {
144 do_cryptop(fd, ses, i, hash);
145 ATF_CHECK_EQ_MSG(
146 memcmp(hash, blake2b_keyed_kat[i], sizeof(hash)),
147 0,
148 "different at %zu", i);
149 }
150 }
151
152 static void
test_blake2s_vectors(const char * devname,const char * modname)153 test_blake2s_vectors(const char *devname, const char *modname)
154 {
155 uint8_t hash[BLAKE2S_OUTBYTES];
156 int crid, fd, ses;
157 size_t i;
158
159 ATF_REQUIRE_KERNEL_MODULE(modname);
160 ATF_REQUIRE_KERNEL_MODULE("cryptodev");
161
162 initialize_constant_buffers();
163 fd = get_handle_fd();
164 crid = lookup_crid(fd, devname);
165 ses = create_session(fd, CRYPTO_BLAKE2S, crid, key2s, sizeof(key2s));
166
167 for (i = 0; i < sizeof(katbuf); i++) {
168 do_cryptop(fd, ses, i, hash);
169 ATF_CHECK_EQ_MSG(
170 memcmp(hash, blake2s_keyed_kat[i], sizeof(hash)),
171 0,
172 "different at %zu", i);
173 }
174 }
175
176 ATF_TC_WITHOUT_HEAD(blake2b_vectors);
ATF_TC_BODY(blake2b_vectors,tc)177 ATF_TC_BODY(blake2b_vectors, tc)
178 {
179 ATF_REQUIRE_SYSCTL_INT("kern.crypto.allow_soft", 1);
180 test_blake2b_vectors("cryptosoft0", "nexus/cryptosoft");
181 }
182
183 ATF_TC_WITHOUT_HEAD(blake2s_vectors);
ATF_TC_BODY(blake2s_vectors,tc)184 ATF_TC_BODY(blake2s_vectors, tc)
185 {
186 ATF_REQUIRE_SYSCTL_INT("kern.crypto.allow_soft", 1);
187 test_blake2s_vectors("cryptosoft0", "nexus/cryptosoft");
188 }
189
190 #if defined(__i386__) || defined(__amd64__)
191 ATF_TC_WITHOUT_HEAD(blake2b_vectors_x86);
ATF_TC_BODY(blake2b_vectors_x86,tc)192 ATF_TC_BODY(blake2b_vectors_x86, tc)
193 {
194 ATF_REQUIRE_SYSCTL_INT("kern.crypto.allow_soft", 1);
195 test_blake2b_vectors("blaketwo0", "nexus/blake2");
196 }
197
198 ATF_TC_WITHOUT_HEAD(blake2s_vectors_x86);
ATF_TC_BODY(blake2s_vectors_x86,tc)199 ATF_TC_BODY(blake2s_vectors_x86, tc)
200 {
201 ATF_REQUIRE_SYSCTL_INT("kern.crypto.allow_soft", 1);
202 test_blake2s_vectors("blaketwo0", "nexus/blake2");
203 }
204 #endif
205
ATF_TP_ADD_TCS(tp)206 ATF_TP_ADD_TCS(tp)
207 {
208
209 ATF_TP_ADD_TC(tp, blake2b_vectors);
210 ATF_TP_ADD_TC(tp, blake2s_vectors);
211 #if defined(__i386__) || defined(__amd64__)
212 ATF_TP_ADD_TC(tp, blake2b_vectors_x86);
213 ATF_TP_ADD_TC(tp, blake2s_vectors_x86);
214 #endif
215
216 return (atf_no_error());
217 }
218