Refactor to use HASH_KEEP option instead of dedicated context for SHA, also add HASH_KEEP to sha1 context with correct init/free calls

Author: night1rider

wolfcrypt/src/port/maxim/max3266x.c

@@ -561,12 +561,10 @@ int wc_InitSha_ex(wc_Sha* sha, void* heap, int devId)
     sha->devId = devId;
     sha->devCtx = NULL;
 #endif
-
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Init(&(sha->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
+#ifdef WOLFSSL_HASH_KEEP
+    sha->msg  = NULL;
+    sha->len  = 0;
+    sha->used = 0;
 #endif
 
 #ifdef WOLFSSL_USE_ESP32_CRYPT_HASH_HW
@@ -1087,9 +1085,6 @@ void wc_ShaFree(wc_Sha* sha)
 #ifdef WOLFSSL_PIC32MZ_HASH
     wc_ShaPic32Free(sha);
 #endif
-#ifdef MAX3266X_SHA_CB
-    wc_MXC_TPU_SHA_Free(&(sha->mxcCtx));
-#endif
 #if defined(WOLFSSL_SE050) && defined(WOLFSSL_SE050_HASH)
     se050_hash_free(&sha->se050Ctx);
 #endif
@@ -1105,6 +1100,14 @@ void wc_ShaFree(wc_Sha* sha)
     DCPShaFree(sha);
 #endif
 
+#ifdef WOLFSSL_HASH_KEEP
+    if (sha->msg != NULL) {
+        ForceZero(sha->msg, sha->len);
+        XFREE(sha->msg, sha->heap, DYNAMIC_TYPE_TMP_BUFFER);
+        sha->msg = NULL;
+    }
+#endif
+
 #if defined(PSOC6_HASH_SHA1)
     wc_Psoc6_Sha_Free();
 #endif
@@ -1198,12 +1201,6 @@ int wc_ShaCopy(wc_Sha* src, wc_Sha* dst)
     esp_sha_ctx_copy(src, dst);
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Copy(&(src->mxcCtx), &(dst->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
-#endif
 
 #if defined(PSOC6_HASH_SHA1)
     wc_Psoc6_Sha1_Sha2_Init(dst, WC_PSOC6_SHA1, 0);
@@ -1212,6 +1209,18 @@ int wc_ShaCopy(wc_Sha* src, wc_Sha* dst)
 #ifdef WOLFSSL_HASH_FLAGS
     dst->flags |= WC_HASH_FLAG_ISCOPY;
 #endif
+
+#if defined(WOLFSSL_HASH_KEEP)
+    if (src->msg != NULL) {
+        dst->msg = (byte*)XMALLOC(src->len, dst->heap,
+                                  DYNAMIC_TYPE_TMP_BUFFER);
+        if (dst->msg == NULL) {
+            return MEMORY_E;
+        }
+        XMEMCPY(dst->msg, src->msg, src->used);
+    }
+#endif
+
     return ret;
 }
 #endif /* WOLFSSL_RENESAS_RX64_HASH */

wolfcrypt/src/sha.c

@@ -1113,12 +1113,6 @@ int wc_InitSha256_ex(wc_Sha256* sha256, void* heap, int devId)
     (void)devId;
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Init(&(sha256->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
-#endif
 
     #ifdef WOLFSSL_SMALL_STACK_CACHE
     sha256->W = NULL;
@@ -1171,12 +1165,6 @@ static WC_INLINE int Transform_Sha256_Len(wc_Sha256* sha256, const byte* data,
         sha256->devId = devId;
         sha256->devCtx = NULL;
     #endif
-    #ifdef MAX3266X_SHA_CB
-        ret = wc_MXC_TPU_SHA_Init(&(sha256->mxcCtx));
-        if (ret != 0) {
-            return ret;
-        }
-    #endif
     #ifdef WOLFSSL_SMALL_STACK_CACHE
         sha256->W = (word32*)XMALLOC(sizeof(word32) * WC_SHA256_BLOCK_SIZE,
                                      sha256->heap, DYNAMIC_TYPE_DIGEST);
@@ -2150,12 +2138,6 @@ static WC_INLINE int Transform_Sha256_Len(wc_Sha256* sha256, const byte* data,
         sha224->devId = devId;
         sha224->devCtx = NULL;
     #endif
-    #ifdef MAX3266X_SHA_CB
-        ret = wc_MXC_TPU_SHA_Init(&(sha224->mxcCtx));
-        if (ret != 0) {
-            return ret;
-        }
-    #endif
     #if defined(WOLFSSL_USE_ESP32_CRYPT_HASH_HW)
         #if defined(NO_WOLFSSL_ESP32_CRYPT_HASH_SHA224)
         /* We know this is a fresh, uninitialized item, so set to INIT */
@@ -2428,9 +2410,6 @@ void wc_Sha256Free(wc_Sha256* sha256)
     }
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    wc_MXC_TPU_SHA_Free(&(sha256->mxcCtx));
-#endif
 
 #if defined(WOLFSSL_ASYNC_CRYPT) && defined(WC_ASYNC_ENABLE_SHA256)
     wolfAsync_DevCtxFree(&sha256->asyncDev, WOLFSSL_ASYNC_MARKER_SHA256);
@@ -2758,12 +2737,6 @@ int wc_Sha256Copy(wc_Sha256* src, wc_Sha256* dst)
     wc_MAXQ10XX_Sha256Copy(src);
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Copy(&(src->mxcCtx), &(dst->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
-#endif
 
 #ifdef WOLFSSL_SMALL_STACK_CACHE
     dst->W = (word32*)XMALLOC(sizeof(word32) * WC_SHA256_BLOCK_SIZE,

wolfcrypt/src/sha256.c

@@ -887,6 +887,8 @@ static int InitSha512_Family(wc_Sha512* sha512, void* heap, int devId,
 
 #ifdef WOLFSSL_HASH_KEEP
     sha512->msg  = NULL;
+    sha512->len  = 0;
+    sha512->used = 0;
 #endif
 
     /* call the initialization function pointed to by initfp */
@@ -927,11 +929,6 @@ int wc_InitSha512_ex(wc_Sha512* sha512, void* heap, int devId)
     sha512->ctx.mode = ESP32_SHA_INIT;
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    if (wc_MXC_TPU_SHA_Init(&(sha512->mxcCtx)) != 0){
-        return BAD_FUNC_ARG;
-    }
-#endif
 
     return InitSha512_Family(sha512, heap, devId, InitSha512);
 }
@@ -1676,9 +1673,6 @@ void wc_Sha512Free(wc_Sha512* sha512)
     }
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    wc_MXC_TPU_SHA_Free(&(sha512->mxcCtx));
-#endif
 
 #if defined(WOLFSSL_ASYNC_CRYPT) && defined(WC_ASYNC_ENABLE_SHA512)
     wolfAsync_DevCtxFree(&sha512->asyncDev, WOLFSSL_ASYNC_MARKER_SHA512);
@@ -2062,12 +2056,6 @@ int wc_InitSha384_ex(wc_Sha384* sha384, void* heap, int devId)
     sha384->ctx.mode = ESP32_SHA_INIT;
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Init(&(sha384->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
-#endif
 
     ret = InitSha384(sha384);
     if (ret != 0) {
@@ -2172,9 +2160,6 @@ void wc_Sha384Free(wc_Sha384* sha384)
     }
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    wc_MXC_TPU_SHA_Free(&(sha384->mxcCtx));
-#endif
 
     ForceZero(sha384, sizeof(*sha384));
 }
@@ -2313,12 +2298,6 @@ int wc_Sha512Copy(wc_Sha512* src, wc_Sha512* dst)
     }
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Copy(&(src->mxcCtx), &(dst->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
-#endif
 
 #if defined(PSOC6_HASH_SHA2)
     wc_Psoc6_Sha1_Sha2_Init(dst, WC_PSOC6_SHA512, 0);
@@ -2756,12 +2735,6 @@ int wc_Sha384Copy(wc_Sha384* src, wc_Sha384* dst)
     }
 #endif
 
-#ifdef MAX3266X_SHA_CB
-    ret = wc_MXC_TPU_SHA_Copy(&(src->mxcCtx), &(dst->mxcCtx));
-    if (ret != 0) {
-        return ret;
-    }
-#endif
 
 #if defined(PSOC6_HASH_SHA2)
     wc_Psoc6_Sha1_Sha2_Init(dst, WC_PSOC6_SHA384, 0);

wolfcrypt/src/sha512.c

@@ -59,12 +59,6 @@
 #endif /* HAVE_AES_DECRYPT */
 
 
-    WOLFSSL_LOCAL int wc_MXC_Sha256Update(wc_MXC_Sha* sha256,
-                                            const unsigned char* data,
-                                            unsigned int len);
-    WOLFSSL_LOCAL int wc_MXC_Sha256Final(wc_MXC_Sha* sha256,
-                                            unsigned char* hash);
-
 #ifdef __cplusplus
     } /* extern "C" */
 #endif

wolfssl/wolfcrypt/port/maxim/max3266x-cryptocb.h

@@ -33,8 +33,6 @@
 /* Some extra conditions when using callbacks */
 #if defined(WOLF_CRYPTO_CB)
     #define MAX3266X_CB
-    #define WOLF_CRYPTO_CB_COPY /* Enable copy callback for deep copy */
-    #define WOLF_CRYPTO_CB_FREE /* Enable free callback for proper cleanup */
     #ifdef MAX3266X_MATH
         #error Cannot have MAX3266X_MATH and MAX3266X_CB
     #endif
@@ -238,14 +236,10 @@
 
 #if defined(MAX3266X_SHA) || defined(MAX3266X_SHA_CB)
 
-    /* Need to update this struct accordingly if other SHA Structs change */
-    /* This is a generic struct to use so only this is needed */
-
-    typedef struct {
-        unsigned char   *msg;
-        unsigned int    used;
-        unsigned int    size;
-    } wc_MXC_Sha;
+    /* Use HASH_KEEP to accumulate message data for one-shot TPU hardware */
+    #ifndef WOLFSSL_HASH_KEEP
+        #define WOLFSSL_HASH_KEEP
+    #endif
 
     #if !defined(NO_SHA)
         /* Define the SHA digest for an empty string */
@@ -313,19 +307,26 @@
     #endif /* WOLFSSL_SHA512 */
 
 
-    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_Init(wc_MXC_Sha *hash);
-    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_Update(wc_MXC_Sha *hash,
-                                                const unsigned char* data,
-                                                unsigned int size);
-    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_Final(wc_MXC_Sha *hash,
+    /* Check for empty message and provide pre-computed digest if so */
+    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_GetDigest(const unsigned char* msg,
+                                                unsigned int msgSz,
                                                 unsigned char* digest,
                                                 MXC_TPU_HASH_TYPE algo);
-    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_GetHash(wc_MXC_Sha *hash,
+    /* Compute hash from accumulated message using TPU hardware */
+    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_GetHash(const unsigned char* msg,
+                                                unsigned int msgSz,
                                                 unsigned char* digest,
                                                 MXC_TPU_HASH_TYPE algo);
-    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_Copy(wc_MXC_Sha* src, wc_MXC_Sha* dst);
-    WOLFSSL_LOCAL void wc_MXC_TPU_SHA_Free(wc_MXC_Sha* hash);
-    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_GetDigest(wc_MXC_Sha *hash,
+    /* Free HASH_KEEP message buffer and reset fields */
+    WOLFSSL_LOCAL void wc_MXC_TPU_SHA_Free(unsigned char** msg,
+                                                unsigned int* used,
+                                                unsigned int* len,
+                                                void* heap);
+    /* Compute hash, free message buffer, and reset fields */
+    WOLFSSL_LOCAL int wc_MXC_TPU_SHA_Final(unsigned char** msg,
+                                                unsigned int* used,
+                                                unsigned int* len,
+                                                void* heap,
                                                 unsigned char* digest,
                                                 MXC_TPU_HASH_TYPE algo);
 

wolfssl/wolfcrypt/port/maxim/max3266x.h

@@ -175,9 +175,6 @@ struct wc_Sha {
     int    devId;
     void*  devCtx; /* generic crypto callback context */
 #endif
-#if defined(MAX3266X_SHA_CB) || defined(MAX3266X_SHA)
-    wc_MXC_Sha mxcCtx;
-#endif
 #ifdef WOLFSSL_IMXRT1170_CAAM
     caam_hash_ctx_t ctx;
     caam_handle_t hndl;

wolfssl/wolfcrypt/sha.h

@@ -209,9 +209,6 @@ struct wc_Sha256 {
 #ifdef WOLFSSL_DEVCRYPTO_HASH
     WC_CRYPTODEV ctx;
 #endif
-#if defined(MAX3266X_SHA_CB) || defined(MAX3266X_SHA)
-    wc_MXC_Sha mxcCtx;
-#endif
 #if defined(WOLFSSL_DEVCRYPTO_HASH) || defined(WOLFSSL_HASH_KEEP)
     byte*  msg;
     word32 used;

wolfssl/wolfcrypt/sha256.h

@@ -189,9 +189,6 @@ struct wc_Sha512 {
     int    devId;
     void*  devCtx; /* generic crypto callback context */
 #endif
-#if defined(MAX3266X_SHA_CB) || defined(MAX3266X_SHA)
-    wc_MXC_Sha mxcCtx;
-#endif
 #ifdef WOLFSSL_HASH_FLAGS
     word32 flags; /* enum wc_HashFlags in hash.h */
 #endif