|
@@ -27,159 +27,13 @@
|
|
|
# include <sys/sysctl.h>
|
|
|
#endif
|
|
|
#include <openssl/crypto.h>
|
|
|
-#include <openssl/bn.h>
|
|
|
#include "internal/cryptlib.h"
|
|
|
-#include "crypto/chacha.h"
|
|
|
-#include "bn/bn_local.h"
|
|
|
-
|
|
|
-#include "ppc_arch.h"
|
|
|
+#include "crypto/ppc_arch.h"
|
|
|
|
|
|
unsigned int OPENSSL_ppccap_P = 0;
|
|
|
|
|
|
static sigset_t all_masked;
|
|
|
|
|
|
-
|
|
|
-#ifdef OPENSSL_BN_ASM_MONT
|
|
|
-int bn_mul_mont(BN_ULONG *rp, const BN_ULONG *ap, const BN_ULONG *bp,
|
|
|
- const BN_ULONG *np, const BN_ULONG *n0, int num)
|
|
|
-{
|
|
|
- int bn_mul_mont_int(BN_ULONG *rp, const BN_ULONG *ap, const BN_ULONG *bp,
|
|
|
- const BN_ULONG *np, const BN_ULONG *n0, int num);
|
|
|
- int bn_mul4x_mont_int(BN_ULONG *rp, const BN_ULONG *ap, const BN_ULONG *bp,
|
|
|
- const BN_ULONG *np, const BN_ULONG *n0, int num);
|
|
|
- int bn_mul_mont_fixed_n6(BN_ULONG *rp, const BN_ULONG *ap,
|
|
|
- const BN_ULONG *bp, const BN_ULONG *np,
|
|
|
- const BN_ULONG *n0, int num);
|
|
|
- int bn_mul_mont_300_fixed_n6(BN_ULONG *rp, const BN_ULONG *ap,
|
|
|
- const BN_ULONG *bp, const BN_ULONG *np,
|
|
|
- const BN_ULONG *n0, int num);
|
|
|
-
|
|
|
- if (num < 4)
|
|
|
- return 0;
|
|
|
-
|
|
|
- if ((num & 3) == 0)
|
|
|
- return bn_mul4x_mont_int(rp, ap, bp, np, n0, num);
|
|
|
-
|
|
|
- /*
|
|
|
- * There used to be [optional] call to bn_mul_mont_fpu64 here,
|
|
|
- * but above subroutine is faster on contemporary processors.
|
|
|
- * Formulation means that there might be old processors where
|
|
|
- * FPU code path would be faster, POWER6 perhaps, but there was
|
|
|
- * no opportunity to figure it out...
|
|
|
- */
|
|
|
-
|
|
|
- if (num == 6) {
|
|
|
- if (OPENSSL_ppccap_P & PPC_MADD300)
|
|
|
- return bn_mul_mont_300_fixed_n6(rp, ap, bp, np, n0, num);
|
|
|
- else
|
|
|
- return bn_mul_mont_fixed_n6(rp, ap, bp, np, n0, num);
|
|
|
- }
|
|
|
-
|
|
|
- return bn_mul_mont_int(rp, ap, bp, np, n0, num);
|
|
|
-}
|
|
|
-#endif
|
|
|
-void sha256_block_p8(void *ctx, const void *inp, size_t len);
|
|
|
-void sha256_block_ppc(void *ctx, const void *inp, size_t len);
|
|
|
-void sha256_block_data_order(void *ctx, const void *inp, size_t len);
|
|
|
-void sha256_block_data_order(void *ctx, const void *inp, size_t len)
|
|
|
-{
|
|
|
- OPENSSL_ppccap_P & PPC_CRYPTO207 ? sha256_block_p8(ctx, inp, len) :
|
|
|
- sha256_block_ppc(ctx, inp, len);
|
|
|
-}
|
|
|
-
|
|
|
-void sha512_block_p8(void *ctx, const void *inp, size_t len);
|
|
|
-void sha512_block_ppc(void *ctx, const void *inp, size_t len);
|
|
|
-void sha512_block_data_order(void *ctx, const void *inp, size_t len);
|
|
|
-void sha512_block_data_order(void *ctx, const void *inp, size_t len)
|
|
|
-{
|
|
|
- OPENSSL_ppccap_P & PPC_CRYPTO207 ? sha512_block_p8(ctx, inp, len) :
|
|
|
- sha512_block_ppc(ctx, inp, len);
|
|
|
-}
|
|
|
-
|
|
|
-#ifndef FIPS_MODULE
|
|
|
-# ifndef OPENSSL_NO_CHACHA
|
|
|
-void ChaCha20_ctr32_int(unsigned char *out, const unsigned char *inp,
|
|
|
- size_t len, const unsigned int key[8],
|
|
|
- const unsigned int counter[4]);
|
|
|
-void ChaCha20_ctr32_vmx(unsigned char *out, const unsigned char *inp,
|
|
|
- size_t len, const unsigned int key[8],
|
|
|
- const unsigned int counter[4]);
|
|
|
-void ChaCha20_ctr32_vsx(unsigned char *out, const unsigned char *inp,
|
|
|
- size_t len, const unsigned int key[8],
|
|
|
- const unsigned int counter[4]);
|
|
|
-void ChaCha20_ctr32(unsigned char *out, const unsigned char *inp,
|
|
|
- size_t len, const unsigned int key[8],
|
|
|
- const unsigned int counter[4])
|
|
|
-{
|
|
|
- OPENSSL_ppccap_P & PPC_CRYPTO207
|
|
|
- ? ChaCha20_ctr32_vsx(out, inp, len, key, counter)
|
|
|
- : OPENSSL_ppccap_P & PPC_ALTIVEC
|
|
|
- ? ChaCha20_ctr32_vmx(out, inp, len, key, counter)
|
|
|
- : ChaCha20_ctr32_int(out, inp, len, key, counter);
|
|
|
-}
|
|
|
-# endif
|
|
|
-
|
|
|
-# ifndef OPENSSL_NO_POLY1305
|
|
|
-void poly1305_init_int(void *ctx, const unsigned char key[16]);
|
|
|
-void poly1305_blocks(void *ctx, const unsigned char *inp, size_t len,
|
|
|
- unsigned int padbit);
|
|
|
-void poly1305_emit(void *ctx, unsigned char mac[16],
|
|
|
- const unsigned int nonce[4]);
|
|
|
-void poly1305_init_fpu(void *ctx, const unsigned char key[16]);
|
|
|
-void poly1305_blocks_fpu(void *ctx, const unsigned char *inp, size_t len,
|
|
|
- unsigned int padbit);
|
|
|
-void poly1305_emit_fpu(void *ctx, unsigned char mac[16],
|
|
|
- const unsigned int nonce[4]);
|
|
|
-void poly1305_init_vsx(void *ctx, const unsigned char key[16]);
|
|
|
-void poly1305_blocks_vsx(void *ctx, const unsigned char *inp, size_t len,
|
|
|
- unsigned int padbit);
|
|
|
-void poly1305_emit_vsx(void *ctx, unsigned char mac[16],
|
|
|
- const unsigned int nonce[4]);
|
|
|
-int poly1305_init(void *ctx, const unsigned char key[16], void *func[2]);
|
|
|
-int poly1305_init(void *ctx, const unsigned char key[16], void *func[2])
|
|
|
-{
|
|
|
- if (OPENSSL_ppccap_P & PPC_CRYPTO207) {
|
|
|
- poly1305_init_int(ctx, key);
|
|
|
- func[0] = (void*)(uintptr_t)poly1305_blocks_vsx;
|
|
|
- func[1] = (void*)(uintptr_t)poly1305_emit;
|
|
|
- } else if (sizeof(size_t) == 4 && (OPENSSL_ppccap_P & PPC_FPU)) {
|
|
|
- poly1305_init_fpu(ctx, key);
|
|
|
- func[0] = (void*)(uintptr_t)poly1305_blocks_fpu;
|
|
|
- func[1] = (void*)(uintptr_t)poly1305_emit_fpu;
|
|
|
- } else {
|
|
|
- poly1305_init_int(ctx, key);
|
|
|
- func[0] = (void*)(uintptr_t)poly1305_blocks;
|
|
|
- func[1] = (void*)(uintptr_t)poly1305_emit;
|
|
|
- }
|
|
|
- return 1;
|
|
|
-}
|
|
|
-# endif
|
|
|
-#endif /* FIPS_MODULE */
|
|
|
-
|
|
|
-#ifdef ECP_NISTZ256_ASM
|
|
|
-void ecp_nistz256_mul_mont(unsigned long res[4], const unsigned long a[4],
|
|
|
- const unsigned long b[4]);
|
|
|
-
|
|
|
-void ecp_nistz256_to_mont(unsigned long res[4], const unsigned long in[4]);
|
|
|
-void ecp_nistz256_to_mont(unsigned long res[4], const unsigned long in[4])
|
|
|
-{
|
|
|
- static const unsigned long RR[] = { 0x0000000000000003U,
|
|
|
- 0xfffffffbffffffffU,
|
|
|
- 0xfffffffffffffffeU,
|
|
|
- 0x00000004fffffffdU };
|
|
|
-
|
|
|
- ecp_nistz256_mul_mont(res, in, RR);
|
|
|
-}
|
|
|
-
|
|
|
-void ecp_nistz256_from_mont(unsigned long res[4], const unsigned long in[4]);
|
|
|
-void ecp_nistz256_from_mont(unsigned long res[4], const unsigned long in[4])
|
|
|
-{
|
|
|
- static const unsigned long one[] = { 1, 0, 0, 0 };
|
|
|
-
|
|
|
- ecp_nistz256_mul_mont(res, in, one);
|
|
|
-}
|
|
|
-#endif
|
|
|
-
|
|
|
static sigjmp_buf ill_jmp;
|
|
|
static void ill_handler(int sig)
|
|
|
{
|