2 * Glue code for the SHA256 Secure Hash Algorithm assembly implementation
3 * using NEON instructions.
5 * Copyright © 2015 Google Inc.
7 * This file is based on sha512_neon_glue.c:
8 * Copyright © 2014 Jussi Kivilinna <jussi.kivilinna@iki.fi>
10 * This program is free software; you can redistribute it and/or modify it
11 * under the terms of the GNU General Public License as published by the Free
12 * Software Foundation; either version 2 of the License, or (at your option)
17 #include <crypto/internal/hash.h>
18 #include <linux/cryptohash.h>
19 #include <linux/types.h>
20 #include <linux/string.h>
21 #include <crypto/sha.h>
22 #include <asm/byteorder.h>
25 #include "sha256_glue.h"
27 asmlinkage void sha256_block_data_order_neon(u32 *digest, const void *data,
28 unsigned int num_blks);
31 static int __sha256_neon_update(struct shash_desc *desc, const u8 *data,
32 unsigned int len, unsigned int partial)
34 struct sha256_state *sctx = shash_desc_ctx(desc);
35 unsigned int done = 0;
40 done = SHA256_BLOCK_SIZE - partial;
41 memcpy(sctx->buf + partial, data, done);
42 sha256_block_data_order_neon(sctx->state, sctx->buf, 1);
45 if (len - done >= SHA256_BLOCK_SIZE) {
46 const unsigned int rounds = (len - done) / SHA256_BLOCK_SIZE;
48 sha256_block_data_order_neon(sctx->state, data + done, rounds);
49 done += rounds * SHA256_BLOCK_SIZE;
52 memcpy(sctx->buf, data + done, len - done);
57 static int sha256_neon_update(struct shash_desc *desc, const u8 *data,
60 struct sha256_state *sctx = shash_desc_ctx(desc);
61 unsigned int partial = sctx->count % SHA256_BLOCK_SIZE;
64 /* Handle the fast case right here */
65 if (partial + len < SHA256_BLOCK_SIZE) {
67 memcpy(sctx->buf + partial, data, len);
72 if (!may_use_simd()) {
73 res = __sha256_update(desc, data, len, partial);
76 res = __sha256_neon_update(desc, data, len, partial);
83 /* Add padding and return the message digest. */
84 static int sha256_neon_final(struct shash_desc *desc, u8 *out)
86 struct sha256_state *sctx = shash_desc_ctx(desc);
87 unsigned int i, index, padlen;
88 __be32 *dst = (__be32 *)out;
90 static const u8 padding[SHA256_BLOCK_SIZE] = { 0x80, };
92 /* save number of bits */
93 bits = cpu_to_be64(sctx->count << 3);
95 /* Pad out to 56 mod 64 and append length */
96 index = sctx->count % SHA256_BLOCK_SIZE;
97 padlen = (index < 56) ? (56 - index) : ((SHA256_BLOCK_SIZE+56)-index);
99 if (!may_use_simd()) {
100 sha256_update(desc, padding, padlen);
101 sha256_update(desc, (const u8 *)&bits, sizeof(bits));
104 /* We need to fill a whole block for __sha256_neon_update() */
106 sctx->count += padlen;
107 memcpy(sctx->buf + index, padding, padlen);
109 __sha256_neon_update(desc, padding, padlen, index);
111 __sha256_neon_update(desc, (const u8 *)&bits,
116 /* Store state in digest */
117 for (i = 0; i < 8; i++)
118 dst[i] = cpu_to_be32(sctx->state[i]);
121 memset(sctx, 0, sizeof(*sctx));
126 static int sha224_neon_final(struct shash_desc *desc, u8 *out)
128 u8 D[SHA256_DIGEST_SIZE];
130 sha256_neon_final(desc, D);
132 memcpy(out, D, SHA224_DIGEST_SIZE);
133 memset(D, 0, SHA256_DIGEST_SIZE);
138 struct shash_alg sha256_neon_algs[] = { {
139 .digestsize = SHA256_DIGEST_SIZE,
141 .update = sha256_neon_update,
142 .final = sha256_neon_final,
143 .export = sha256_export,
144 .import = sha256_import,
145 .descsize = sizeof(struct sha256_state),
146 .statesize = sizeof(struct sha256_state),
148 .cra_name = "sha256",
149 .cra_driver_name = "sha256-neon",
151 .cra_flags = CRYPTO_ALG_TYPE_SHASH,
152 .cra_blocksize = SHA256_BLOCK_SIZE,
153 .cra_module = THIS_MODULE,
156 .digestsize = SHA224_DIGEST_SIZE,
158 .update = sha256_neon_update,
159 .final = sha224_neon_final,
160 .export = sha256_export,
161 .import = sha256_import,
162 .descsize = sizeof(struct sha256_state),
163 .statesize = sizeof(struct sha256_state),
165 .cra_name = "sha224",
166 .cra_driver_name = "sha224-neon",
168 .cra_flags = CRYPTO_ALG_TYPE_SHASH,
169 .cra_blocksize = SHA224_BLOCK_SIZE,
170 .cra_module = THIS_MODULE,
projects / firefly-linux-kernel-4.4.55.git / blob