esp-idf/components/mbedtls/port/sha/esp_sha.c

/*
 * SPDX-FileCopyrightText: 2018-2023 Espressif Systems (Shanghai) CO LTD
 *
 * SPDX-License-Identifier: Apache-2.0
 */

#include <string.h>
#include <stdio.h>
#include <assert.h>
#include "hal/sha_hal.h"
#include "hal/sha_types.h"
#include "soc/soc_caps.h"
#include "esp_log.h"

#include <mbedtls/sha1.h>
#include <mbedtls/sha256.h>
#include <mbedtls/sha512.h>

#if SOC_SHA_SUPPORT_PARALLEL_ENG
#include "sha/sha_parallel_engine.h"
#elif SOC_SHA_SUPPORT_DMA
#include "sha/sha_dma.h"
#else
#include "sha/sha_block.h"
#endif

static const char *TAG = "esp_sha";

void esp_sha(esp_sha_type sha_type, const unsigned char *input, size_t ilen, unsigned char *output)
{
    union {
#if SOC_SHA_SUPPORT_SHA1
        mbedtls_sha1_context sha1;
#endif
#if SOC_SHA_SUPPORT_SHA256
        mbedtls_sha256_context sha256;
#endif
#if SOC_SHA_SUPPORT_SHA384 || SOC_SHA_SUPPORT_SHA512
        mbedtls_sha512_context sha512;
#endif
    } ctx;

    int ret __attribute__((unused));
    assert(input != NULL && output != NULL);

#if SOC_SHA_SUPPORT_SHA1
    if (sha_type == SHA1) {
        mbedtls_sha1_init(&ctx.sha1);
        mbedtls_sha1_starts(&ctx.sha1);
        ret = mbedtls_sha1_update(&ctx.sha1, input, ilen);
        assert(ret == 0);
        ret = mbedtls_sha1_finish(&ctx.sha1, output);
        assert(ret == 0);
        mbedtls_sha1_free(&ctx.sha1);
        return;
    }
#endif //SOC_SHA_SUPPORT_SHA1

#if SOC_SHA_SUPPORT_SHA256
    if (sha_type == SHA2_256) {
        mbedtls_sha256_init(&ctx.sha256);
        mbedtls_sha256_starts(&ctx.sha256, 0);
        ret = mbedtls_sha256_update(&ctx.sha256, input, ilen);
        assert(ret == 0);
        ret = mbedtls_sha256_finish(&ctx.sha256, output);
        assert(ret == 0);
        mbedtls_sha256_free(&ctx.sha256);
        return;
    }
#endif //SOC_SHA_SUPPORT_SHA256

#if SOC_SHA_SUPPORT_SHA384
    if (sha_type == SHA2_384) {
        mbedtls_sha512_init(&ctx.sha512);
        mbedtls_sha512_starts(&ctx.sha512, 1);
        ret = mbedtls_sha512_update(&ctx.sha512, input, ilen);
        assert(ret == 0);
        ret = mbedtls_sha512_finish(&ctx.sha512, output);
        assert(ret == 0);
        mbedtls_sha512_free(&ctx.sha512);
        return;
    }
#endif //SOC_SHA_SUPPORT_SHA384

#if SOC_SHA_SUPPORT_SHA512
    if (sha_type == SHA2_512) {
        mbedtls_sha512_init(&ctx.sha512);
        mbedtls_sha512_starts(&ctx.sha512, 0);
        ret = mbedtls_sha512_update(&ctx.sha512, input, ilen);
        assert(ret == 0);
        ret = mbedtls_sha512_finish(&ctx.sha512, output);
        assert(ret == 0);
        mbedtls_sha512_free(&ctx.sha512);
        return;
    }
#endif //SOC_SHA_SUPPORT_SHA512

    ESP_LOGE(TAG, "SHA type %d not supported", (int)sha_type);
    abort();
}


#if SOC_SHA_SUPPORT_SHA512_T

/* The initial hash value for SHA512/t is generated according to the
   algorithm described in the TRM, chapter SHA-Accelerator
*/
int esp_sha_512_t_init_hash(uint16_t t)
{
    uint32_t t_string = 0;
    uint8_t t0, t1, t2, t_len;

    if (t == 384) {
        ESP_LOGE(TAG, "Invalid t for SHA512/t, t = %u,cannot be 384", t);
        return -1;
    }

    if (t <= 9) {
        t_string = (uint32_t)((1 << 23) | ((0x30 + t) << 24));
        t_len = 0x48;
    } else if (t <= 99) {
        t0 = t % 10;
        t1 = (t / 10) % 10;
        t_string = (uint32_t)((1 << 15) | ((0x30 + t0) << 16) |
                              (((0x30 + t1) << 24)));
        t_len = 0x50;
    } else if (t <= 512) {
        t0 = t % 10;
        t1 = (t / 10) % 10;
        t2 = t / 100;
        t_string = (uint32_t)((1 << 7) | ((0x30 + t0) << 8) |
                              (((0x30 + t1) << 16) + ((0x30 + t2) << 24)));
        t_len = 0x58;
    } else {
        ESP_LOGE(TAG, "Invalid t for SHA512/t, t = %u, must equal or less than 512", t);
        return -1;
    }

    sha_hal_sha512_init_hash(t_string, t_len);

    return 0;
}

#endif //SOC_SHA_SUPPORT_SHA512_T
ci: Fix issues for build stage - Fixed logs expecting different format specifier - Updated ignore list for check_public_header test - Updated functions ported from mbedTLS 2022-01-17 16:47:32 +05:30			`/*`
mbedtls: fix sha-512 block mode build error 2023-05-04 14:38:05 +05:30			`* SPDX-FileCopyrightText: 2018-2023 Espressif Systems (Shanghai) CO LTD`
ci: Fix issues for build stage - Fixed logs expecting different format specifier - Updated ignore list for check_public_header test - Updated functions ported from mbedTLS 2022-01-17 16:47:32 +05:30			`*`
			`* SPDX-License-Identifier: Apache-2.0`
			`*/`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00
			`#include <string.h>`
			`#include <stdio.h>`
			`#include <assert.h>`
mbedtls: fix sha-512 block mode build error 2023-05-04 14:38:05 +05:30			`#include "hal/sha_hal.h"`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#include "hal/sha_types.h"`
SHA/RSA: moved all caps to soc_caps.h 2020-10-29 10:51:36 +08:00			`#include "soc/soc_caps.h"`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#include "esp_log.h"`
hw crypto: activated hardware acceleration for esp32s2beta Activated AES, RSA and SHA hardware acceleration for esp32s2 and enabled related unit tests. Updated with changes made for ESP32 from 0a04034, 961f59f and caea288. Added performance targets for esp32s2beta Closes IDF-757 2019-11-06 11:07:16 +08:00
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`#include <mbedtls/sha1.h>`
			`#include <mbedtls/sha256.h>`
			`#include <mbedtls/sha512.h>`

SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#if SOC_SHA_SUPPORT_PARALLEL_ENG`
			`#include "sha/sha_parallel_engine.h"`
			`#elif SOC_SHA_SUPPORT_DMA`
			`#include "sha/sha_dma.h"`
SHA: added hardware support for SHA on C2. 2021-09-24 14:32:58 +08:00			`#else`
			`#include "sha/sha_block.h"`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#endif`

			`static const char *TAG = "esp_sha";`
hw crypto: activated hardware acceleration for esp32s2beta Activated AES, RSA and SHA hardware acceleration for esp32s2 and enabled related unit tests. Updated with changes made for ESP32 from 0a04034, 961f59f and caea288. Added performance targets for esp32s2beta Closes IDF-757 2019-11-06 11:07:16 +08:00
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`void esp_sha(esp_sha_type sha_type, const unsigned char input, size_t ilen, unsigned char output)`
			`{`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`union {`
			`#if SOC_SHA_SUPPORT_SHA1`
			`mbedtls_sha1_context sha1;`
			`#endif`
			`#if SOC_SHA_SUPPORT_SHA256`
			`mbedtls_sha256_context sha256;`
			`#endif`
			`#if SOC_SHA_SUPPORT_SHA384 \|\| SOC_SHA_SUPPORT_SHA512`
			`mbedtls_sha512_context sha512;`
			`#endif`
			`} ctx;`

core system: Fix warnings in compilation when assertions are disabled Adds a CI config for hello world that sets this, to catch future regressions 2021-02-12 16:01:05 +11:00			`int ret __attribute__((unused));`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(input != NULL && output != NULL);`

SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#if SOC_SHA_SUPPORT_SHA1`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`if (sha_type == SHA1) {`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha1_init(&ctx.sha1);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`mbedtls_sha1_starts(&ctx.sha1);`
			`ret = mbedtls_sha1_update(&ctx.sha1, input, ilen);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`ret = mbedtls_sha1_finish(&ctx.sha1, output);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha1_free(&ctx.sha1);`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`return;`
			`}`
			`#endif //SOC_SHA_SUPPORT_SHA1`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#if SOC_SHA_SUPPORT_SHA256`
			`if (sha_type == SHA2_256) {`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha256_init(&ctx.sha256);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`mbedtls_sha256_starts(&ctx.sha256, 0);`
			`ret = mbedtls_sha256_update(&ctx.sha256, input, ilen);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`ret = mbedtls_sha256_finish(&ctx.sha256, output);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha256_free(&ctx.sha256);`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`return;`
			`}`
			`#endif //SOC_SHA_SUPPORT_SHA256`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#if SOC_SHA_SUPPORT_SHA384`
			`if (sha_type == SHA2_384) {`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha512_init(&ctx.sha512);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`mbedtls_sha512_starts(&ctx.sha512, 1);`
			`ret = mbedtls_sha512_update(&ctx.sha512, input, ilen);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`ret = mbedtls_sha512_finish(&ctx.sha512, output);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha512_free(&ctx.sha512);`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`return;`
			`}`
			`#endif //SOC_SHA_SUPPORT_SHA384`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#if SOC_SHA_SUPPORT_SHA512`
			`if (sha_type == SHA2_512) {`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha512_init(&ctx.sha512);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`mbedtls_sha512_starts(&ctx.sha512, 0);`
			`ret = mbedtls_sha512_update(&ctx.sha512, input, ilen);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls-3 update: 1) Fix build issue in mbedtls 2) skip the public headers check in IDF 3)Update Kconfig Macros 4)Remove deprecated config options 5) Update the sha API according to new nomenclature 6) Update mbedtls_rsa_init usage 7) Include mbedtls/build_info.h instead of mbedtls/config.h 8) Dont include check_config.h 9) Add additional error message in esp_blufi_api.h 2021-05-28 18:43:32 +05:30			`ret = mbedtls_sha512_finish(&ctx.sha512, output);`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`assert(ret == 0);`
mbedtls: Avoid malloc in esp_sha() function 2020-11-06 14:50:22 +11:00			`mbedtls_sha512_free(&ctx.sha512);`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`return;`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`}`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`#endif //SOC_SHA_SUPPORT_SHA512`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00
ci: Fix issues for build stage - Fixed logs expecting different format specifier - Updated ignore list for check_public_header test - Updated functions ported from mbedTLS 2022-01-17 16:47:32 +05:30			`ESP_LOGE(TAG, "SHA type %d not supported", (int)sha_type);`
SHA: add HAL layer and refactor driver Add a LL and HAL layer for SHA. 2020-08-13 16:30:59 +08:00			`abort();`
esp32: Rewrite esp_sha function It removes using a STALL_OTHER_CPU while sha operations. It improves performance with SHA. 2019-05-13 12:32:45 +08:00			`}`
mbedtls: fix sha-512 block mode build error 2023-05-04 14:38:05 +05:30

			`#if SOC_SHA_SUPPORT_SHA512_T`

			`/* The initial hash value for SHA512/t is generated according to the`
			`algorithm described in the TRM, chapter SHA-Accelerator`
			`*/`
			`int esp_sha_512_t_init_hash(uint16_t t)`
			`{`
			`uint32_t t_string = 0;`
			`uint8_t t0, t1, t2, t_len;`

			`if (t == 384) {`
			`ESP_LOGE(TAG, "Invalid t for SHA512/t, t = %u,cannot be 384", t);`
			`return -1;`
			`}`

			`if (t <= 9) {`
			`t_string = (uint32_t)((1 << 23) \| ((0x30 + t) << 24));`
			`t_len = 0x48;`
			`} else if (t <= 99) {`
			`t0 = t % 10;`
			`t1 = (t / 10) % 10;`
			`t_string = (uint32_t)((1 << 15) \| ((0x30 + t0) << 16) \|`
			`(((0x30 + t1) << 24)));`
			`t_len = 0x50;`
			`} else if (t <= 512) {`
			`t0 = t % 10;`
			`t1 = (t / 10) % 10;`
			`t2 = t / 100;`
			`t_string = (uint32_t)((1 << 7) \| ((0x30 + t0) << 8) \|`
			`(((0x30 + t1) << 16) + ((0x30 + t2) << 24)));`
			`t_len = 0x58;`
			`} else {`
			`ESP_LOGE(TAG, "Invalid t for SHA512/t, t = %u, must equal or less than 512", t);`
			`return -1;`
			`}`

			`sha_hal_sha512_init_hash(t_string, t_len);`

			`return 0;`
			`}`

			`#endif //SOC_SHA_SUPPORT_SHA512_T`