/*
 * This product includes cryptographic software developed by the OpenSSL
 * Project for use in the OpenSSL Toolkit (http://www.openssl.org/). This
 * product includes cryptographic software written by Eric Young
 * ([email protected]).
 */

/*
 * ====================================================================
 * Copyright (c) 1998-2011 The OpenSSL Project.  All rights reserved.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 *
 * 1. Redistributions of source code must retain the above copyright
 *    notice, this list of conditions and the following disclaimer.
 *
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in
 *    the documentation and/or other materials provided with the
 *    distribution.
 *
 * 3. All advertising materials mentioning features or use of this
 *    software must display the following acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
 *
 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
 *    endorse or promote products derived from this software without
 *    prior written permission. For written permission, please contact
 *    [email protected].
 *
 * 5. Products derived from this software may not be called "OpenSSL"
 *    nor may "OpenSSL" appear in their names without prior written
 *    permission of the OpenSSL Project.
 *
 * 6. Redistributions of any form whatsoever must retain the following
 *    acknowledgment:
 *    "This product includes software developed by the OpenSSL Project
 *    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
 *
 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
 * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 * OF THE POSSIBILITY OF SUCH DAMAGE.
 * ====================================================================
 */

/*
 * Copyright (c) 2011, Oracle and/or its affiliates. All rights reserved.
 */

/*
 * This engine supports SPARC microprocessors that provide AES and other
 * cipher and hash instructions, such as the T4 microprocessor.
 *
 * This file implements the SHA-1 message digest operations.
 */

#include <openssl/opensslconf.h>

#if !defined(OPENSSL_NO_HW) && !defined(OPENSSL_NO_HW_MD_T4)
#if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_SHA1)
#include <sys/types.h>
#include <stdlib.h>
#include <string.h>
#include <errno.h>

/*
 * For SHA1, OpenSSL SHA_CTX has an extra num field at the end,
 * while the Solaris SHA1_CTX does not have this field.
 */
#include <openssl/engine.h>
#include <openssl/sha.h>

#if (defined(sun4v) || defined(__sparcv9) || defined(__sparcv8plus) || \
	defined(__sparcv8)) && !defined(OPENSSL_NO_ASM)
#define	COMPILE_HW_T4
#endif

#ifdef	COMPILE_HW_T4

/* Assembly language function; replaces C function sha1_block_data_order(): */
extern void t4_sha1_multiblock(SHA_CTX *ctx, const void *input, size_t num);

/* Formal declaration for functions in EVP_MD structure */
static int t4_digest_init_sha1(EVP_MD_CTX *ctx);
static int t4_digest_update_sha1(EVP_MD_CTX *ctx, const void *data,
    size_t len);
static int t4_digest_final_sha1(EVP_MD_CTX *ctx, unsigned char *md);
static int t4_digest_copy_sha1(EVP_MD_CTX *to, const EVP_MD_CTX *from);

/*
 * OpenSSL's libcrypto EVP stuff. This is how this engine gets wired to EVP.
 * EVP_MD is defined in evp.h.  To maintain binary compatibility the
 * definition cannot be modified.
 * Stuff specific to the t4 engine is kept in t4_cipher_ctx_t, which is
 * pointed to by the last field, app_data.
 *
 * Fields: type, pkey_type, md_size, flags,
 *	init(), update(), final(),
 *	copy(), cleanup(), sign(), verify(),
 *	required_pkey_type, block_size, ctx_size, md5_ctrl()
 */
const EVP_MD t4_sha1 = {
	NID_sha1, NID_sha1WithRSAEncryption, SHA_DIGEST_LENGTH,
	EVP_MD_FLAG_PKEY_METHOD_SIGNATURE | EVP_MD_FLAG_DIGALGID_ABSENT,
	t4_digest_init_sha1, t4_digest_update_sha1, t4_digest_final_sha1,
	t4_digest_copy_sha1, NULL,
	EVP_PKEY_RSA_method, SHA_CBLOCK,
	sizeof (SHA_CTX), NULL
	};

/* These functions are defined in md32_common.h: */
static int t4_sha1_update(SHA_CTX *c, const void *data_, size_t len);
static void t4_sha1_transform(SHA_CTX *c, const unsigned char *data);
static int t4_sha1_final(unsigned char *md, SHA_CTX *c);
#pragma inline(t4_sha1_update, t4_sha1_transform, t4_sha1_final)

#define	DATA_ORDER_IS_BIG_ENDIAN
/* HASH_LONG/SHA_LONG is unsigned int (32 bits): */
#define	HASH_LONG			SHA_LONG
#define	HASH_CTX			SHA_CTX
#define	HASH_CBLOCK			SHA_CBLOCK
#define	HASH_UPDATE			t4_sha1_update
#define	HASH_TRANSFORM			t4_sha1_transform
#define	HASH_FINAL			t4_sha1_final
#define	HASH_BLOCK_DATA_ORDER		t4_sha1_multiblock
#define	HASH_MAKE_STRING(c, s)   do {	\
		unsigned int ll;		\
		ll = (c)->h0; HOST_l2c(ll, (s));	\
		ll = (c)->h1; HOST_l2c(ll, (s));	\
		ll = (c)->h2; HOST_l2c(ll, (s));	\
		ll = (c)->h3; HOST_l2c(ll, (s));	\
		ll = (c)->h4; HOST_l2c(ll, (s));	\
	} while (0)

/* This defines HASH_UPDATE, HASH_TRANSFORM, HASH_FINAL functions: */
#include "md32_common.h"


/*
 * SHA-1 functions (FIPS 180-1 Secure Hash Standard)
 */

static int
t4_digest_init_sha1(EVP_MD_CTX *ctx)
{
	SHA_CTX	*c = (SHA_CTX *)ctx->md_data;

	/* Optimization: don't call memset(c, 0,...) or initialize c->data[] */
	c->Nl = c->Nh = c->num = 0;
	c->h0 = 0x67452301U;
	c->h1 = 0xefcdab89U;
	c->h2 = 0x98badcfeU;
	c->h3 = 0x10325476U;
	c->h4 = 0xc3d2e1f0U;

	return (1);
}

/* Continue SHA1 digest operation, using the message block to update context. */
static int
t4_digest_update_sha1(EVP_MD_CTX *ctx, const void *data, size_t len)
{
	return (t4_sha1_update((SHA_CTX *)ctx->md_data, data, len));
}

/* End SHA1 digest operation, finalizing message digest and zeroing context. */
static int
t4_digest_final_sha1(EVP_MD_CTX *ctx, unsigned char *md)
{
	return (t4_sha1_final(md, (SHA_CTX *)ctx->md_data));
}

/* Required for Engine API */
static int
t4_digest_copy_sha1(EVP_MD_CTX *to, const EVP_MD_CTX *from)
{
	if ((to->md_data != NULL) && (from->md_data != NULL)) {
		(void) memcpy(to->md_data, from->md_data, sizeof (SHA_CTX));
	}
	return (1);
}

#endif	/* COMPILE_HW_T4 */
#endif	/* !OPENSSL_NO_SHA && !OPENSSL_NO_SHA1 */
#endif	/* !OPENSSL_NO_HW && !OPENSSL_NO_HW_MD_T4 */