/*
* Perform FIPS Integrity test on Kernel Crypto API
*
*/
#include <linux/crypto.h>
#include <linux/kallsyms.h>
#include <linux/err.h>
#include <linux/scatterlist.h>
#include <crypto/hash.h>
#include "fips140.h"
#include "fips140_test.h"
/*
* This function convert buildtime address to runtime, considering KASLR
* If CONFIG_RELOCATABLE_KERNEL is set
* Then the kernel will be placed into the random offset in memory
* @input_address - pointer to the buildtime address to be converted
* @base_address - (*base_address - base_address) is kernel offset with KASLR
*/
__attribute__((optnone)) static
__u64 get_real_address(const __u64 *input_address, const __u64 *base_address)
{
__u64 runtime_address = (__u64) base_address;
__u64 buildtime_address = *base_address;
__u64 kernel_offset = abs(buildtime_address - runtime_address);
if (runtime_address < buildtime_address)
return (__u64)((*input_address) - kernel_offset);
return (__u64)((*input_address) + kernel_offset);
}
__attribute__((optnone)) static __u64 return_value_from_pointer(const __u64 *input_address)
{
return *input_address;
}
struct sdesc {
struct shash_desc shash;
char ctx[];
};
static struct sdesc *init_hash(void)
{
struct crypto_shash *tfm = NULL;
struct sdesc *sdesc = NULL;
int size;
int ret = -1;
/* Same as build time */
const unsigned char *key = "The quick brown fox jumps over the lazy dog";
tfm = crypto_alloc_shash("hmac(sha256)", 0, 0);
if (IS_ERR(tfm)) {
pr_err("FIPS(%s): integ failed to allocate tfm %ld\n", __func__, PTR_ERR(tfm));
return ERR_PTR(-EINVAL);
}
ret = crypto_shash_setkey(tfm, key, strlen(key));
if (ret) {
pr_err("FIPS(%s): fail at crypto_hash_setkey\n", __func__);
return ERR_PTR(-EINVAL);
}
size = sizeof(struct shash_desc) + crypto_shash_descsize(tfm);
sdesc = kmalloc(size, GFP_KERNEL);
if (!sdesc)
return ERR_PTR(-ENOMEM);
sdesc->shash.tfm = tfm;
ret = crypto_shash_init(&sdesc->shash);
if (ret) {
pr_err("FIPS(%s): fail at crypto_hash_init\n", __func__);
return ERR_PTR(-EINVAL);
}
return sdesc;
}
static int
finalize_hash(struct shash_desc *desc, unsigned char *out, unsigned int out_size)
{
int ret = -1;
if (!desc || !desc->tfm || !out || !out_size) {
pr_err("FIPS(%s): Invalid args\n", __func__);
return ret;
}
if (crypto_shash_digestsize(desc->tfm) > out_size) {
pr_err("FIPS(%s): Not enough space for digest\n", __func__);
return ret;
}
ret = crypto_shash_final(desc, out);
if (ret) {
pr_err("FIPS(%s): crypto_hash_final failed\n", __func__);
return -1;
}
return 0;
}
static int
update_hash(struct shash_desc *desc, unsigned char *start_addr, unsigned int size)
{
int ret = -1;
ret = crypto_shash_update(desc, start_addr, size);
if (ret) {
pr_err("FIPS(%s): crypto_hash_update failed\n", __func__);
return -1;
}
#ifdef CONFIG_CRYPTO_FIPS_FUNC_TEST
if (!strcmp("integrity", get_fips_functest_mode())) {
ret = crypto_shash_update(desc, start_addr, 4);
if (ret) {
pr_err("FIPS(%s): crypto_hash_update failed\n", __func__);
return -1;
}
}
#endif
return 0;
}
__attribute__((optnone)) int
do_integrity_check(void)
{
unsigned int i, rows;
int err = -1;
unsigned long start_addr = 0;
unsigned long end_addr = 0;
unsigned char runtime_hmac[32];
struct sdesc *sdesc = NULL;
const char *builtime_hmac = 0;
unsigned int size = 0;
#ifdef FIPS_DEBUG_INTEGRITY
unsigned int covered = 0;
unsigned int num_addresses = 0;
#endif
sdesc = init_hash();
if (IS_ERR(sdesc)) {
pr_err("FIPS(%s) : init_hash failed\n", __func__);
return -1;
}
rows = (unsigned int) ARRAY_SIZE(integrity_crypto_addrs);
#ifdef FIPS_DEBUG_INTEGRITY
pr_info("FIPS_DEBUG_INTEGRITY : crypto_buildtime_address = %llx, &crypto_buildtime_address = %llx",
crypto_buildtime_address, (__u64)&crypto_buildtime_address);
pr_info("FIPS_DEBUG_INTEGRITY : return_value_from_pointer((__u64*)&crypto_buildtime_address) = %llx",
return_value_from_pointer(&crypto_buildtime_address));
#endif
for (i = 0; return_value_from_pointer(&integrity_crypto_addrs[i].first) && i < rows; i++) {
start_addr = get_real_address((__u64 *)&integrity_crypto_addrs[i].first, &crypto_buildtime_address);
end_addr = get_real_address((__u64 *)&integrity_crypto_addrs[i].last, &crypto_buildtime_address);
/* Print addresses for HMAC calculation */
#ifdef FIPS_DEBUG_INTEGRITY
pr_info("FIPS_DEBUG_INTEGRITY : buildtime gap: %llx - %llx, size = %x\n",
integrity_crypto_addrs[i].first,
integrity_crypto_addrs[i].last, (end_addr - start_addr));
covered += (end_addr - start_addr);
#endif
size = end_addr - start_addr;
err = update_hash(&sdesc->shash, (unsigned char *)start_addr, size);
if (err) {
pr_err("FIPS(%s) : Error to update hash\n", __func__);
crypto_free_shash(sdesc->shash.tfm);
kfree_sensitive(sdesc);
return -1;
}
}
/* Dump bytes for HMAC */
#ifdef FIPS_DEBUG_INTEGRITY
num_addresses = i;
for (i = 0; return_value_from_pointer(&integrity_crypto_addrs[i].first) && i < rows; i++) {
start_addr = get_real_address((__u64 *)&integrity_crypto_addrs[i].first, &crypto_buildtime_address);
end_addr = get_real_address((__u64 *)&integrity_crypto_addrs[i].last, &crypto_buildtime_address);
size = end_addr - start_addr;
pr_info("FIPS_DEBUG_INTEGRITY : gap: %llx - %llx, size = %x :\n", start_addr, end_addr, size);
# ifdef FIPS_PRINT_FULL_DUMP
print_hex_dump(KERN_INFO, " : ", DUMP_PREFIX_NONE,
16, 1, (char *)start_addr, size, false);
# endif
}
#endif
err = finalize_hash(&sdesc->shash, runtime_hmac, sizeof(runtime_hmac));
crypto_free_shash(sdesc->shash.tfm);
kfree_sensitive(sdesc);
if (err) {
pr_err("FIPS(%s) : Error in finalize\n", __func__);
return -1;
}
builtime_hmac = builtime_crypto_hmac;
#ifdef FIPS_DEBUG_INTEGRITY
pr_info("FIPS_DEBUG_INTEGRITY : builtime_hmac = %llx", (__u64) builtime_hmac);
pr_info("FIPS_DEBUG_INTEGRITY : %d bytes are covered, Address fragments (%d)", covered, num_addresses);
print_hex_dump(KERN_INFO, "FIPS_DEBUG_INTEGRITY : runtime hmac = ", DUMP_PREFIX_NONE,
16, 1,
runtime_hmac, sizeof(runtime_hmac), false);
print_hex_dump(KERN_INFO, "FIPS_DEBUG_INTEGRITY : builtime_hmac = ", DUMP_PREFIX_NONE,
16, 1,
builtime_hmac, sizeof(runtime_hmac), false);
#endif
if (!memcmp(builtime_hmac, runtime_hmac, sizeof(runtime_hmac))) {
pr_info("FIPS : POST - integrity test passed\n");
return 0;
} else {
pr_err("FIPS : POST - integrity test failed\n");
return -1;
}
}
EXPORT_SYMBOL_GPL(do_integrity_check);