1219351Spjd/*- 2219351Spjd * Copyright (c) 2011 Pawel Jakub Dawidek <pawel@dawidek.net> 3219351Spjd * All rights reserved. 4219351Spjd * 5219351Spjd * Redistribution and use in source and binary forms, with or without 6219351Spjd * modification, are permitted provided that the following conditions 7219351Spjd * are met: 8219351Spjd * 1. Redistributions of source code must retain the above copyright 9219351Spjd * notice, this list of conditions and the following disclaimer. 10219351Spjd * 2. Redistributions in binary form must reproduce the above copyright 11219351Spjd * notice, this list of conditions and the following disclaimer in the 12219351Spjd * documentation and/or other materials provided with the distribution. 13219351Spjd * 14219351Spjd * THIS SOFTWARE IS PROVIDED BY THE AUTHORS AND CONTRIBUTORS ``AS IS'' AND 15219351Spjd * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 16219351Spjd * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE 17219351Spjd * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE LIABLE 18219351Spjd * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL 19219351Spjd * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS 20219351Spjd * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 21219351Spjd * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT 22219351Spjd * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY 23219351Spjd * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF 24219351Spjd * SUCH DAMAGE. 25219351Spjd */ 26219351Spjd 27219351Spjd#include <sys/cdefs.h> 28219351Spjd__FBSDID("$FreeBSD$"); 29219351Spjd 30219351Spjd#include <errno.h> 31219351Spjd#include <string.h> 32219351Spjd#include <strings.h> 33219351Spjd 34219351Spjd#ifdef HAVE_CRYPTO 35219351Spjd#include <openssl/sha.h> 36219351Spjd#endif 37219351Spjd 38219351Spjd#include <crc32.h> 39219351Spjd#include <hast.h> 40219351Spjd#include <nv.h> 41219351Spjd#include <pjdlog.h> 42219351Spjd 43219351Spjd#include "hast_checksum.h" 44219351Spjd 45219351Spjd#ifdef HAVE_CRYPTO 46219351Spjd#define MAX_HASH_SIZE SHA256_DIGEST_LENGTH 47219351Spjd#else 48219351Spjd#define MAX_HASH_SIZE 4 49219351Spjd#endif 50219351Spjd 51229509Strocinystatic void 52219351Spjdhast_crc32_checksum(const unsigned char *data, size_t size, 53219351Spjd unsigned char *hash, size_t *hsizep) 54219351Spjd{ 55219351Spjd uint32_t crc; 56219351Spjd 57219351Spjd crc = crc32(data, size); 58219351Spjd /* XXXPJD: Do we have to use htole32() on crc first? */ 59219351Spjd bcopy(&crc, hash, sizeof(crc)); 60219351Spjd *hsizep = sizeof(crc); 61219351Spjd} 62219351Spjd 63219351Spjd#ifdef HAVE_CRYPTO 64229509Strocinystatic void 65219351Spjdhast_sha256_checksum(const unsigned char *data, size_t size, 66219351Spjd unsigned char *hash, size_t *hsizep) 67219351Spjd{ 68219351Spjd SHA256_CTX ctx; 69219351Spjd 70219351Spjd SHA256_Init(&ctx); 71219351Spjd SHA256_Update(&ctx, data, size); 72219351Spjd SHA256_Final(hash, &ctx); 73219351Spjd *hsizep = SHA256_DIGEST_LENGTH; 74219351Spjd} 75219351Spjd#endif /* HAVE_CRYPTO */ 76219351Spjd 77219351Spjdconst char * 78219351Spjdchecksum_name(int num) 79219351Spjd{ 80219351Spjd 81219351Spjd switch (num) { 82219351Spjd case HAST_CHECKSUM_NONE: 83219351Spjd return ("none"); 84219351Spjd case HAST_CHECKSUM_CRC32: 85219351Spjd return ("crc32"); 86219351Spjd case HAST_CHECKSUM_SHA256: 87219351Spjd return ("sha256"); 88219351Spjd } 89219351Spjd return ("unknown"); 90219351Spjd} 91219351Spjd 92219351Spjdint 93219351Spjdchecksum_send(const struct hast_resource *res, struct nv *nv, void **datap, 94219351Spjd size_t *sizep, bool *freedatap __unused) 95219351Spjd{ 96219351Spjd unsigned char hash[MAX_HASH_SIZE]; 97219351Spjd size_t hsize; 98219351Spjd 99219351Spjd switch (res->hr_checksum) { 100219351Spjd case HAST_CHECKSUM_NONE: 101219351Spjd return (0); 102219351Spjd case HAST_CHECKSUM_CRC32: 103229509Strociny hast_crc32_checksum(*datap, *sizep, hash, &hsize); 104219351Spjd break; 105219351Spjd#ifdef HAVE_CRYPTO 106219351Spjd case HAST_CHECKSUM_SHA256: 107229509Strociny hast_sha256_checksum(*datap, *sizep, hash, &hsize); 108219351Spjd break; 109219351Spjd#endif 110219351Spjd default: 111219351Spjd PJDLOG_ABORT("Invalid checksum: %d.", res->hr_checksum); 112219351Spjd } 113219351Spjd nv_add_string(nv, checksum_name(res->hr_checksum), "checksum"); 114219351Spjd nv_add_uint8_array(nv, hash, hsize, "hash"); 115219351Spjd if (nv_error(nv) != 0) { 116219351Spjd errno = nv_error(nv); 117219351Spjd return (-1); 118219351Spjd } 119219351Spjd return (0); 120219351Spjd} 121219351Spjd 122219351Spjdint 123219351Spjdchecksum_recv(const struct hast_resource *res __unused, struct nv *nv, 124219351Spjd void **datap, size_t *sizep, bool *freedatap __unused) 125219351Spjd{ 126219351Spjd unsigned char chash[MAX_HASH_SIZE]; 127219351Spjd const unsigned char *rhash; 128219351Spjd size_t chsize, rhsize; 129219351Spjd const char *algo; 130219351Spjd 131219351Spjd algo = nv_get_string(nv, "checksum"); 132219351Spjd if (algo == NULL) 133219351Spjd return (0); /* No checksum. */ 134219351Spjd rhash = nv_get_uint8_array(nv, &rhsize, "hash"); 135219351Spjd if (rhash == NULL) { 136219351Spjd pjdlog_error("Hash is missing."); 137219351Spjd return (-1); /* Hash not found. */ 138219351Spjd } 139219351Spjd if (strcmp(algo, "crc32") == 0) 140229509Strociny hast_crc32_checksum(*datap, *sizep, chash, &chsize); 141219351Spjd#ifdef HAVE_CRYPTO 142219351Spjd else if (strcmp(algo, "sha256") == 0) 143229509Strociny hast_sha256_checksum(*datap, *sizep, chash, &chsize); 144219351Spjd#endif 145219351Spjd else { 146219351Spjd pjdlog_error("Unknown checksum algorithm '%s'.", algo); 147219351Spjd return (-1); /* Unknown checksum algorithm. */ 148219351Spjd } 149219351Spjd if (rhsize != chsize) { 150219351Spjd pjdlog_error("Invalid hash size (%zu) for %s, should be %zu.", 151219351Spjd rhsize, algo, chsize); 152219351Spjd return (-1); /* Different hash size. */ 153219351Spjd } 154219351Spjd if (bcmp(rhash, chash, chsize) != 0) { 155219351Spjd pjdlog_error("Hash mismatch."); 156219351Spjd return (-1); /* Hash mismatch. */ 157219351Spjd } 158219351Spjd 159219351Spjd return (0); 160219351Spjd} 161