sbin/hastd/hast_checksum.c

219351Spjd/*-
219351Spjd * Copyright (c) 2011 Pawel Jakub Dawidek <pawel@dawidek.net>
219351Spjd * All rights reserved.
219351Spjd *
219351Spjd * Redistribution and use in source and binary forms, with or without
219351Spjd * modification, are permitted provided that the following conditions
219351Spjd * are met:
219351Spjd * 1. Redistributions of source code must retain the above copyright
219351Spjd *    notice, this list of conditions and the following disclaimer.
219351Spjd * 2. Redistributions in binary form must reproduce the above copyright
219351Spjd *    notice, this list of conditions and the following disclaimer in the
219351Spjd *    documentation and/or other materials provided with the distribution.
219351Spjd *
219351Spjd * THIS SOFTWARE IS PROVIDED BY THE AUTHORS AND CONTRIBUTORS ``AS IS'' AND
219351Spjd * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
219351Spjd * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
219351Spjd * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHORS OR CONTRIBUTORS BE LIABLE
219351Spjd * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
219351Spjd * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
219351Spjd * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
219351Spjd * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
219351Spjd * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
219351Spjd * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
219351Spjd * SUCH DAMAGE.
219351Spjd */
219351Spjd
219351Spjd#include <sys/cdefs.h>
219351Spjd__FBSDID("$FreeBSD$");
219351Spjd
219351Spjd#include <errno.h>
219351Spjd#include <string.h>
219351Spjd#include <strings.h>
219351Spjd
219351Spjd#ifdef HAVE_CRYPTO
219351Spjd#include <openssl/sha.h>
219351Spjd#endif
219351Spjd
219351Spjd#include <crc32.h>
219351Spjd#include <hast.h>
219351Spjd#include <nv.h>
219351Spjd#include <pjdlog.h>
219351Spjd
219351Spjd#include "hast_checksum.h"
219351Spjd
219351Spjd#ifdef HAVE_CRYPTO
219351Spjd#define	MAX_HASH_SIZE	SHA256_DIGEST_LENGTH
219351Spjd#else
219351Spjd#define	MAX_HASH_SIZE	4
219351Spjd#endif
219351Spjd
229509Strocinystatic void
219351Spjdhast_crc32_checksum(const unsigned char *data, size_t size,
219351Spjd    unsigned char *hash, size_t *hsizep)
219351Spjd{
219351Spjd	uint32_t crc;
219351Spjd
219351Spjd	crc = crc32(data, size);
219351Spjd	/* XXXPJD: Do we have to use htole32() on crc first? */
219351Spjd	bcopy(&crc, hash, sizeof(crc));
219351Spjd	*hsizep = sizeof(crc);
219351Spjd}
219351Spjd
219351Spjd#ifdef HAVE_CRYPTO
229509Strocinystatic void
219351Spjdhast_sha256_checksum(const unsigned char *data, size_t size,
219351Spjd    unsigned char *hash, size_t *hsizep)
219351Spjd{
219351Spjd	SHA256_CTX ctx;
219351Spjd
219351Spjd	SHA256_Init(&ctx);
219351Spjd	SHA256_Update(&ctx, data, size);
219351Spjd	SHA256_Final(hash, &ctx);
219351Spjd	*hsizep = SHA256_DIGEST_LENGTH;
219351Spjd}
219351Spjd#endif	/* HAVE_CRYPTO */
219351Spjd
219351Spjdconst char *
219351Spjdchecksum_name(int num)
219351Spjd{
219351Spjd
219351Spjd	switch (num) {
219351Spjd	case HAST_CHECKSUM_NONE:
219351Spjd		return ("none");
219351Spjd	case HAST_CHECKSUM_CRC32:
219351Spjd		return ("crc32");
219351Spjd	case HAST_CHECKSUM_SHA256:
219351Spjd		return ("sha256");
219351Spjd	}
219351Spjd	return ("unknown");
219351Spjd}
219351Spjd
219351Spjdint
219351Spjdchecksum_send(const struct hast_resource *res, struct nv *nv, void **datap,
219351Spjd    size_t *sizep, bool *freedatap __unused)
219351Spjd{
219351Spjd	unsigned char hash[MAX_HASH_SIZE];
219351Spjd	size_t hsize;
219351Spjd
219351Spjd	switch (res->hr_checksum) {
219351Spjd	case HAST_CHECKSUM_NONE:
219351Spjd		return (0);
219351Spjd	case HAST_CHECKSUM_CRC32:
229509Strociny		hast_crc32_checksum(*datap, *sizep, hash, &hsize);
219351Spjd		break;
219351Spjd#ifdef HAVE_CRYPTO
219351Spjd	case HAST_CHECKSUM_SHA256:
229509Strociny		hast_sha256_checksum(*datap, *sizep, hash, &hsize);
219351Spjd		break;
219351Spjd#endif
219351Spjd	default:
219351Spjd		PJDLOG_ABORT("Invalid checksum: %d.", res->hr_checksum);
219351Spjd	}
219351Spjd	nv_add_string(nv, checksum_name(res->hr_checksum), "checksum");
219351Spjd	nv_add_uint8_array(nv, hash, hsize, "hash");
219351Spjd	if (nv_error(nv) != 0) {
219351Spjd		errno = nv_error(nv);
219351Spjd		return (-1);
219351Spjd	}
219351Spjd	return (0);
219351Spjd}
219351Spjd
219351Spjdint
219351Spjdchecksum_recv(const struct hast_resource *res __unused, struct nv *nv,
219351Spjd    void **datap, size_t *sizep, bool *freedatap __unused)
219351Spjd{
219351Spjd	unsigned char chash[MAX_HASH_SIZE];
219351Spjd	const unsigned char *rhash;
219351Spjd	size_t chsize, rhsize;
219351Spjd	const char *algo;
219351Spjd
219351Spjd	algo = nv_get_string(nv, "checksum");
219351Spjd	if (algo == NULL)
219351Spjd		return (0);	/* No checksum. */
219351Spjd	rhash = nv_get_uint8_array(nv, &rhsize, "hash");
219351Spjd	if (rhash == NULL) {
219351Spjd		pjdlog_error("Hash is missing.");
219351Spjd		return (-1);	/* Hash not found. */
219351Spjd	}
219351Spjd	if (strcmp(algo, "crc32") == 0)
229509Strociny		hast_crc32_checksum(*datap, *sizep, chash, &chsize);
219351Spjd#ifdef HAVE_CRYPTO
219351Spjd	else if (strcmp(algo, "sha256") == 0)
229509Strociny		hast_sha256_checksum(*datap, *sizep, chash, &chsize);
219351Spjd#endif
219351Spjd	else {
219351Spjd		pjdlog_error("Unknown checksum algorithm '%s'.", algo);
219351Spjd		return (-1);	/* Unknown checksum algorithm. */
219351Spjd	}
219351Spjd	if (rhsize != chsize) {
219351Spjd		pjdlog_error("Invalid hash size (%zu) for %s, should be %zu.",
219351Spjd		    rhsize, algo, chsize);
219351Spjd		return (-1);	/* Different hash size. */
219351Spjd	}
219351Spjd	if (bcmp(rhash, chash, chsize) != 0) {
219351Spjd		pjdlog_error("Hash mismatch.");
219351Spjd		return (-1);	/* Hash mismatch. */
219351Spjd	}
219351Spjd
219351Spjd	return (0);
219351Spjd}