[CRYPTO] sha256-generic: Extend sha256_generic.c to support SHA-224

Resubmitting this patch which extends sha256_generic.c to support SHA-224 as described in FIPS 180-2 and RFC 3874. HMAC-SHA-224 as described in RFC4231 is then supported through the hmac interface. Patch includes test vectors for SHA-224 and HMAC-SHA-224. SHA-224 chould be chosen as a hash algorithm when 112 bits of security strength is required. Patch generated against the 2.6.24-rc1 kernel and tested against 2.6.24-rc1-git14 which includes fix for scatter gather implementation for HMAC. Signed-off-by: Jonathan Lynch <jonathan.lynch@intel.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
author: Jonathan Lynch <jonathan.lynch@intel.com> 2007-11-10 07:08:25 -0500
committer: Herbert Xu <herbert@gondor.apana.org.au> 2008-01-10 16:16:12 -0500
commit: cd12fb906d2591e80da9edcbd4794b9b916d7489 (patch)
tree: 312f7ff32b70a1c093fd3d45e6f2a0715008f22b /crypto/sha256_generic.c
parent: cd7c3bfe54270f41ac52be6b725a7194d99175b4 (diff)
1 files changed, 64 insertions, 8 deletions
diff --git a/crypto/sha256_generic.c b/crypto/sha256_generic.c
index fd3918be58b5..3cc93fd61043 100644
--- a/crypto/sha256_generic.c
+++ b/crypto/sha256_generic.c
@@ -9,6 +9,7 @@
 * Copyright (c) Jean-Luc Cooke <jlcooke@certainkey.com>
 * Copyright (c) Andrew McDonald <andrew@mcdonald.org.uk>
 * Copyright (c) 2002 James Morris <jmorris@intercode.com.au>
+ * SHA224 Support Copyright 2007 Intel Corporation <jonathan.lynch@intel.com>
 *
 * This program is free software; you can redistribute it and/or modify it
 * under the terms of the GNU General Public License as published by the Free
@@ -218,6 +219,22 @@ static void sha256_transform(u32 *state, const u8 *input)
        memset(W, 0, 64 * sizeof(u32));
 }
+static void sha224_init(struct crypto_tfm *tfm)
+{
+        struct sha256_ctx *sctx = crypto_tfm_ctx(tfm);
+        sctx->state[0] = SHA224_H0;
+        sctx->state[1] = SHA224_H1;
+        sctx->state[2] = SHA224_H2;
+        sctx->state[3] = SHA224_H3;
+        sctx->state[4] = SHA224_H4;
+        sctx->state[5] = SHA224_H5;
+        sctx->state[6] = SHA224_H6;
+        sctx->state[7] = SHA224_H7;
+        sctx->count[0] = 0;
+        sctx->count[1] = 0;
+}
 static void sha256_init(struct crypto_tfm *tfm)
 {
        struct sha256_ctx *sctx = crypto_tfm_ctx(tfm);
@@ -294,8 +311,17 @@ static void sha256_final(struct crypto_tfm *tfm, u8 *out)
        memset(sctx, 0, sizeof(*sctx));
 }
+static void sha224_final(struct crypto_tfm *tfm, u8 *hash)
+{
+        u8 D[SHA256_DIGEST_SIZE];
+        sha256_final(tfm, D);
+        memcpy(hash, D, SHA224_DIGEST_SIZE);
+        memset(D, 0, SHA256_DIGEST_SIZE);
+}
-static struct crypto_alg alg = {
+static struct crypto_alg sha256 = {
        .cra_name       =       "sha256",
        .cra_driver_name=       "sha256-generic",
        .cra_flags      =       CRYPTO_ALG_TYPE_DIGEST,
@@ -303,28 +329,58 @@ static struct crypto_alg alg = {
        .cra_ctxsize    =       sizeof(struct sha256_ctx),
        .cra_module     =       THIS_MODULE,
        .cra_alignmask  =       3,
-        .cra_list       =       LIST_HEAD_INIT(alg.cra_list),
+        .cra_list       =       LIST_HEAD_INIT(sha256.cra_list),
        .cra_u          =       { .digest = {
        .dia_digestsize =       SHA256_DIGEST_SIZE,
-        .dia_init       =       sha256_init,
+        .dia_init       =       sha256_init,
-        .dia_update     =       sha256_update,
+        .dia_update     =       sha256_update,
-        .dia_final      =       sha256_final } }
+        .dia_final      =       sha256_final } }
+};
+static struct crypto_alg sha224 = {
+        .cra_name       = "sha224",
+        .cra_driver_name = "sha224-generic",
+        .cra_flags      = CRYPTO_ALG_TYPE_DIGEST,
+        .cra_blocksize  = SHA224_BLOCK_SIZE,
+        .cra_ctxsize    = sizeof(struct sha256_ctx),
+        .cra_module     = THIS_MODULE,
+        .cra_alignmask  = 3,
+        .cra_list       = LIST_HEAD_INIT(sha224.cra_list),
+        .cra_u          = { .digest = {
+        .dia_digestsize = SHA224_DIGEST_SIZE,
+        .dia_init       = sha224_init,
+        .dia_update     = sha256_update,
+        .dia_final      = sha224_final } }
 };
 static int __init init(void)
 {
-        return crypto_register_alg(&alg);
+        int ret = 0;
+        ret = crypto_register_alg(&sha224);
+        if (ret < 0)
+                return ret;
+        ret = crypto_register_alg(&sha256);
+        if (ret < 0)
+                crypto_unregister_alg(&sha224);
+        return ret;
 }
 static void __exit fini(void)
 {
-        crypto_unregister_alg(&alg);
+        crypto_unregister_alg(&sha224);
+        crypto_unregister_alg(&sha256);
 }
 module_init(init);
 module_exit(fini);
 MODULE_LICENSE("GPL");
-MODULE_DESCRIPTION("SHA256 Secure Hash Algorithm");
+MODULE_DESCRIPTION("SHA-224 and SHA-256 Secure Hash Algorithm");
+MODULE_ALIAS("sha224");
 MODULE_ALIAS("sha256");
author	Jonathan Lynch <jonathan.lynch@intel.com>	2007-11-10 07:08:25 -0500
committer	Herbert Xu <herbert@gondor.apana.org.au>	2008-01-10 16:16:12 -0500
commit	cd12fb906d2591e80da9edcbd4794b9b916d7489 (patch)
tree	312f7ff32b70a1c093fd3d45e6f2a0715008f22b /crypto/sha256_generic.c
parent	cd7c3bfe54270f41ac52be6b725a7194d99175b4 (diff)

diff --git a/crypto/sha256_generic.c b/crypto/sha256_generic.c index fd3918be58b5..3cc93fd61043 100644 --- a/crypto/sha256_generic.c +++ b/crypto/sha256_generic.c
@@ -9,6 +9,7 @@
9	* Copyright (c) Jean-Luc Cooke <jlcooke@certainkey.com>	9	* Copyright (c) Jean-Luc Cooke <jlcooke@certainkey.com>
10	* Copyright (c) Andrew McDonald <andrew@mcdonald.org.uk>	10	* Copyright (c) Andrew McDonald <andrew@mcdonald.org.uk>
11	* Copyright (c) 2002 James Morris <jmorris@intercode.com.au>	11	* Copyright (c) 2002 James Morris <jmorris@intercode.com.au>
		12	* SHA224 Support Copyright 2007 Intel Corporation <jonathan.lynch@intel.com>
12	*	13	*
13	* This program is free software; you can redistribute it and/or modify it	14	* This program is free software; you can redistribute it and/or modify it
14	* under the terms of the GNU General Public License as published by the Free	15	* under the terms of the GNU General Public License as published by the Free
@@ -218,6 +219,22 @@ static void sha256_transform(u32 state, const u8 input)
218	memset(W, 0, 64 * sizeof(u32));	219	memset(W, 0, 64 * sizeof(u32));
219	}	220	}
220		221
		222
		223	static void sha224_init(struct crypto_tfm *tfm)
		224	{
		225	struct sha256_ctx *sctx = crypto_tfm_ctx(tfm);
		226	sctx->state[0] = SHA224_H0;
		227	sctx->state[1] = SHA224_H1;
		228	sctx->state[2] = SHA224_H2;
		229	sctx->state[3] = SHA224_H3;
		230	sctx->state[4] = SHA224_H4;
		231	sctx->state[5] = SHA224_H5;
		232	sctx->state[6] = SHA224_H6;
		233	sctx->state[7] = SHA224_H7;
		234	sctx->count[0] = 0;
		235	sctx->count[1] = 0;
		236	}
		237
221	static void sha256_init(struct crypto_tfm *tfm)	238	static void sha256_init(struct crypto_tfm *tfm)
222	{	239	{
223	struct sha256_ctx *sctx = crypto_tfm_ctx(tfm);	240	struct sha256_ctx *sctx = crypto_tfm_ctx(tfm);
@@ -294,8 +311,17 @@ static void sha256_final(struct crypto_tfm tfm, u8 out)
294	memset(sctx, 0, sizeof(*sctx));	311	memset(sctx, 0, sizeof(*sctx));
295	}	312	}
296		313
		314	static void sha224_final(struct crypto_tfm tfm, u8 hash)
		315	{
		316	u8 D[SHA256_DIGEST_SIZE];
		317
		318	sha256_final(tfm, D);
		319
		320	memcpy(hash, D, SHA224_DIGEST_SIZE);
		321	memset(D, 0, SHA256_DIGEST_SIZE);
		322	}
297		323
298	static struct crypto_alg alg = {	324	static struct crypto_alg sha256 = {
299	.cra_name = "sha256",	325	.cra_name = "sha256",
300	.cra_driver_name= "sha256-generic",	326	.cra_driver_name= "sha256-generic",
301	.cra_flags = CRYPTO_ALG_TYPE_DIGEST,	327	.cra_flags = CRYPTO_ALG_TYPE_DIGEST,
@@ -303,28 +329,58 @@ static struct crypto_alg alg = {
303	.cra_ctxsize = sizeof(struct sha256_ctx),	329	.cra_ctxsize = sizeof(struct sha256_ctx),
304	.cra_module = THIS_MODULE,	330	.cra_module = THIS_MODULE,
305	.cra_alignmask = 3,	331	.cra_alignmask = 3,
306	.cra_list = LIST_HEAD_INIT(alg.cra_list),	332	.cra_list = LIST_HEAD_INIT(sha256.cra_list),
307	.cra_u = { .digest = {	333	.cra_u = { .digest = {
308	.dia_digestsize = SHA256_DIGEST_SIZE,	334	.dia_digestsize = SHA256_DIGEST_SIZE,
309	.dia_init = sha256_init,	335	.dia_init = sha256_init,
310	.dia_update = sha256_update,	336	.dia_update = sha256_update,
311	.dia_final = sha256_final } }	337	.dia_final = sha256_final } }
		338	};
		339
		340	static struct crypto_alg sha224 = {
		341	.cra_name = "sha224",
		342	.cra_driver_name = "sha224-generic",
		343	.cra_flags = CRYPTO_ALG_TYPE_DIGEST,
		344	.cra_blocksize = SHA224_BLOCK_SIZE,
		345	.cra_ctxsize = sizeof(struct sha256_ctx),
		346	.cra_module = THIS_MODULE,
		347	.cra_alignmask = 3,
		348	.cra_list = LIST_HEAD_INIT(sha224.cra_list),
		349	.cra_u = { .digest = {
		350	.dia_digestsize = SHA224_DIGEST_SIZE,
		351	.dia_init = sha224_init,
		352	.dia_update = sha256_update,
		353	.dia_final = sha224_final } }
312	};	354	};
313		355
314	static int __init init(void)	356	static int __init init(void)
315	{	357	{
316	return crypto_register_alg(&alg);	358	int ret = 0;
		359
		360	ret = crypto_register_alg(&sha224);
		361
		362	if (ret < 0)
		363	return ret;
		364
		365	ret = crypto_register_alg(&sha256);
		366
		367	if (ret < 0)
		368	crypto_unregister_alg(&sha224);
		369
		370	return ret;
317	}	371	}
318		372
319	static void __exit fini(void)	373	static void __exit fini(void)
320	{	374	{
321	crypto_unregister_alg(&alg);	375	crypto_unregister_alg(&sha224);
		376	crypto_unregister_alg(&sha256);
322	}	377	}
323		378
324	module_init(init);	379	module_init(init);
325	module_exit(fini);	380	module_exit(fini);
326		381
327	MODULE_LICENSE("GPL");	382	MODULE_LICENSE("GPL");
328	MODULE_DESCRIPTION("SHA256 Secure Hash Algorithm");	383	MODULE_DESCRIPTION("SHA-224 and SHA-256 Secure Hash Algorithm");
329		384
		385	MODULE_ALIAS("sha224");
330	MODULE_ALIAS("sha256");	386	MODULE_ALIAS("sha256");