root/dev/pci/nofn.c

DEFINITIONS

1. nofn_match
2. nofn_attach
3. nofn_intr
4. nofn_rng_read
5. nofn_rng_intr
6. nofn_rng_tick
7. nofn_rng_disable
8. nofn_rng_enable
9. nofn_pk_enable
10. nofn_pk_feed
11. nofn_pk_process
12. nofn_pk_find
13. nofn_pk_read_reg
14. nofn_pk_write_reg
15. nofn_pk_zero_reg
16. nofn_modexp_start
17. nofn_modexp_finish
18. nofn_pk_sigbits

    1 /*      $OpenBSD: nofn.c,v 1.15 2006/06/29 21:34:51 deraadt Exp $       */
    3 /*
    4  * Copyright (c) 2002 Jason L. Wright (jason@thought.net)
    5  * All rights reserved.
    6  *
    7  * Redistribution and use in source and binary forms, with or without
    8  * modification, are permitted provided that the following conditions
    9  * are met:
   10  * 1. Redistributions of source code must retain the above copyright
   11  *    notice, this list of conditions and the following disclaimer.
   12  * 2. Redistributions in binary form must reproduce the above copyright
   13  *    notice, this list of conditions and the following disclaimer in the
   14  *    documentation and/or other materials provided with the distribution.
   15  *
   16  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
   17  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
   18  * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
   19  * DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
   20  * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
   21  * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
   22  * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
   23  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
   24  * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN
   25  * ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
   26  * POSSIBILITY OF SUCH DAMAGE.
   27  *
   28  * Effort sponsored in part by the Defense Advanced Research Projects
   29  * Agency (DARPA) and Air Force Research Laboratory, Air Force
   30  * Materiel Command, USAF, under agreement number F30602-01-2-0537.
   31  *
   32  */
   34 /*
   35  * Driver for the Hifn 7814/7851/7854 HIPP1 processor.
   36  */
   38 #include <sys/param.h>
   39 #include <sys/systm.h>
   40 #include <sys/proc.h>
   41 #include <sys/errno.h>
   42 #include <sys/malloc.h>
   43 #include <sys/kernel.h>
   44 #include <sys/mbuf.h>
   45 #include <sys/device.h>
   46 #include <sys/queue.h>
   48 #include <crypto/cryptodev.h>
   49 #include <crypto/cryptosoft.h>
   50 #include <dev/rndvar.h>
   51 #include <crypto/md5.h>
   52 #include <crypto/sha1.h>
   54 #include <dev/pci/pcireg.h>
   55 #include <dev/pci/pcivar.h>
   56 #include <dev/pci/pcidevs.h>
   58 #include <dev/pci/nofnreg.h>
   59 #include <dev/pci/nofnvar.h>
   61 int nofn_match(struct device *, void *, void *);
   62 void nofn_attach(struct device *, struct device *, void *);
   63 int nofn_intr(void *);
   65 void nofn_rng_enable(struct nofn_softc *);
   66 void nofn_rng_disable(struct nofn_softc *);
   67 void nofn_rng_tick(void *);
   68 int nofn_rng_intr(struct nofn_softc *);
   69 int nofn_rng_read(struct nofn_softc *);
   71 int nofn_pk_process(struct cryptkop *);
   72 void nofn_pk_enable(struct nofn_softc *);
   73 void nofn_pk_feed(struct nofn_softc *);
   74 struct nofn_softc *nofn_pk_find(struct cryptkop *);
   75 void nofn_pk_write_reg(struct nofn_softc *, int, union nofn_pk_reg *);
   76 void nofn_pk_read_reg(struct nofn_softc *, int, union nofn_pk_reg *);
   77 void nofn_pk_zero_reg(struct nofn_softc *, int);
   78 int nofn_modexp_start(struct nofn_softc *, struct nofn_pk_q *);
   79 void nofn_modexp_finish(struct nofn_softc *, struct nofn_pk_q *);
   80 int nofn_pk_sigbits(const u_int8_t *, u_int);
   82 struct cfattach nofn_ca = {
   83         sizeof(struct nofn_softc), nofn_match, nofn_attach
   84 };
   86 struct cfdriver nofn_cd = {
   87         0, "nofn", DV_DULL
   88 };
   90 int
nofn_match(parent, match, aux)
   92         struct device *parent;
   93         void *match, *aux;
   94 {
   95         struct pci_attach_args *pa = (struct pci_attach_args *)aux;
   97         if (PCI_VENDOR(pa->pa_id) == PCI_VENDOR_HIFN &&
PCI_PRODUCT(pa->pa_id) == PCI_PRODUCT_HIFN_78XX)
   99                 return (1);
  100         return (0);
  101 }
  103 void
nofn_attach(parent, self, aux)
  105         struct device *parent, *self;
  106         void *aux;
  107 {
  108         struct nofn_softc *sc = (struct nofn_softc *)self;
  109         struct pci_attach_args *pa = aux;
pci_chipset_tag_t pc = pa->pa_pc;
pci_intr_handle_t ih;
  112         const char *intrstr = NULL;
bus_size_t bar0size = 0, bar3size = 0;
sc->sc_dmat = pa->pa_dmat;
  117         if (pci_mapreg_map(pa, NOFN_BAR0_REGS, PCI_MAPREG_TYPE_MEM, 0,
  118             &sc->sc_st, &sc->sc_sh, NULL, &bar0size, 0)) {
printf(": can't map bar0 regs\n");
  120                 goto fail;
  121         }
  123         if (pci_intr_map(pa, &ih)) {
printf(": couldn't map interrupt\n");
bus_space_unmap(sc->sc_st, sc->sc_sh, bar0size);
  126                 goto fail;
  127         }
intrstr = pci_intr_string(pc, ih);
sc->sc_ih = pci_intr_establish(pc, ih, IPL_NET, nofn_intr, sc,
self->dv_xname);
  132         if (sc->sc_ih == NULL) {
printf(": couldn't establish interrupt");
  134                 if (intrstr != NULL)
printf(" at %s", intrstr);
printf("\n");
  137                 goto fail;
  138         }
sc->sc_revid = REG_READ_4(sc, NOFN_REVID);
  142         switch (sc->sc_revid) {
  143         case REVID_7814_7854_1:
  144         case REVID_8154_1:/* XXX ? */
  145         case REVID_8065_1:/* XXX ? */
  146         case REVID_8165_1:/* XXX ? */
  147                 if (pci_mapreg_map(pa, NOFN_BAR3_PK, PCI_MAPREG_TYPE_MEM, 0,
  148                     &sc->sc_pk_t, &sc->sc_pk_h, NULL, &bar3size, 0)) {
printf(": can't map bar3 regs\n");
  150                         goto fail;
  151                 }
nofn_rng_enable(sc);
nofn_pk_enable(sc);
  154                 break;
  155         case REVID_7851_1:
  156         case REVID_7851_2:
  157                 break;
  158         default:
printf(": unknown revid %x\n", sc->sc_revid);
  160                 break;
  161         }
printf(":");
  164         if (sc->sc_flags & NOFN_FLAGS_PK)
printf(" PK");
  166         if (sc->sc_flags & NOFN_FLAGS_RNG)
printf(" RNG");
printf(", %s\n", intrstr);
REG_WRITE_4(sc, NOFN_PCI_INT_MASK, sc->sc_intrmask);
  172         return;
fail:
  175         if (bar3size != 0)
bus_space_unmap(sc->sc_pk_t, sc->sc_pk_h, bar3size);
  177         if (bar0size != 0)
bus_space_unmap(sc->sc_st, sc->sc_sh, bar0size);
  179 }
  181 int
nofn_intr(vsc)
  183         void *vsc;
  184 {
  185         struct nofn_softc *sc = vsc;
u_int32_t stat;
  187         int r = 0;
stat = REG_READ_4(sc, NOFN_PCI_INT_STAT) & sc->sc_intrmask;
  191         if (stat & PCIINTSTAT_RNGRDY)
r |= nofn_rng_intr(sc);
  194         if (stat & PCIINTSTAT_PK) {
  195                 struct nofn_pk_q *q;
u_int32_t sr;
r = 1;
sr = PK_READ_4(sc, NOFN_PK_SR);
  200                 if (sr & PK_SR_DONE && sc->sc_pk_current != NULL) {
q = sc->sc_pk_current;
sc->sc_pk_current = NULL;
q->q_finish(sc, q);
free(q, M_DEVBUF);
nofn_pk_feed(sc);
  206                 }
  207         }
  209         return (r);
  210 }
  212 int
nofn_rng_read(sc)
  214         struct nofn_softc *sc;
  215 {
u_int32_t buf[8], reg;
  217         int ret = 0, i;
  219         for (;;) {
reg = PK_READ_4(sc, NOFN_PK_SR);
  221                 if (reg & PK_SR_UFLOW) {
ret = -1;
printf("%s: rng underflow, disabling.\n",
sc->sc_dev.dv_xname);
nofn_rng_disable(sc);
  226                         break;
  227                 }
  229                 if ((reg & PK_SR_RRDY) == 0)
  230                         break;
ret = 1;
bus_space_read_region_4(sc->sc_pk_t, sc->sc_pk_h,
NOFN_PK_RNGFIFO_BEGIN, buf, 8);
  235                 if (sc->sc_rngskip > 0)
sc->sc_rngskip -= 8;
  237                 else
  238                         for (i = 0; i < 8; i++)
add_true_randomness(buf[i]);
  240         }
  242         return (ret);
  243 }
  245 int
nofn_rng_intr(sc)
  247         struct nofn_softc *sc;
  248 {
  249         int r;
r = nofn_rng_read(sc);
  252         if (r == 0)
  253                 return (0);
  254         return (1);
  255 }
  257 void
nofn_rng_tick(vsc)
  259         void *vsc;
  260 {
  261         struct nofn_softc *sc = vsc;
  262         int s, r;
s = splnet();
r = nofn_rng_read(sc);
  266         if (r != -1)
timeout_add(&sc->sc_rngto, sc->sc_rngtick);
splx(s);
  269 }
  271 void
nofn_rng_disable(sc)
  273         struct nofn_softc *sc;
  274 {
u_int32_t r;
  277         /* disable rng unit */
r = PK_READ_4(sc, NOFN_PK_CFG2);
r &= PK_CFG2_ALU_ENA; /* preserve */
PK_WRITE_4(sc, NOFN_PK_CFG2, r);
  282         switch (sc->sc_revid) {
  283         case REVID_7814_7854_1:
  284                 if (timeout_pending(&sc->sc_rngto))
timeout_del(&sc->sc_rngto);
  286                 break;
  287         case REVID_8154_1:
  288         case REVID_8065_1:
  289         case REVID_8165_1:
  290                 /* disable rng interrupts */
r = PK_READ_4(sc, NOFN_PK_IER);
r &= PK_IER_DONE; /* preserve */
PK_WRITE_4(sc, NOFN_PK_IER, r);
sc->sc_intrmask &= ~PCIINTMASK_RNGRDY;
REG_WRITE_4(sc, NOFN_PCI_INT_MASK, sc->sc_intrmask);
  297                 break;
  298         default:
printf("%s: nofn_rng_disable: unknown rev %x\n", 
sc->sc_dev.dv_xname, sc->sc_revid);
  301                 break;
  302         }
sc->sc_flags &= ~NOFN_FLAGS_RNG;
  305 }
  307 void
nofn_rng_enable(sc)
  309         struct nofn_softc *sc;
  310 {
u_int32_t r;
  313         /* setup scalar */
PK_WRITE_4(sc, NOFN_PK_RNC, PK_RNC_SCALER);
  316         /* enable rng unit */
r = PK_READ_4(sc, NOFN_PK_CFG2);
r &= PK_CFG2_ALU_ENA; /* preserve */
r |= PK_CFG2_RNG_ENA;
PK_WRITE_4(sc, NOFN_PK_CFG2, r);
  322         /* 78xx chips cannot use interrupts to gather rng's */
  323         switch (sc->sc_revid) {
  324         case REVID_7814_7854_1:
timeout_set(&sc->sc_rngto, nofn_rng_tick, sc);
  326                 if (hz < 100)
sc->sc_rngtick = 1;
  328                 else
sc->sc_rngtick = hz / 100;
timeout_add(&sc->sc_rngto, sc->sc_rngtick);
  331                 break;
  332         case REVID_8154_1:
  333         case REVID_8065_1:
  334         case REVID_8165_1:
  335                 /* enable rng interrupts */
r = PK_READ_4(sc, NOFN_PK_IER);
r &= PK_IER_DONE; /* preserve */
r |= PK_IER_RRDY;
PK_WRITE_4(sc, NOFN_PK_IER, r);
sc->sc_intrmask |= PCIINTMASK_RNGRDY;
  341                 break;
  342         default:
printf("%s: nofn_rng_enable: unknown rev %x\n", 
sc->sc_dev.dv_xname, sc->sc_revid);
  345                 break;
  346         }
sc->sc_flags |= NOFN_FLAGS_RNG;
  349 }
  351 void
nofn_pk_enable(sc)
  353         struct nofn_softc *sc;
  354 {
u_int32_t r;
  356         int algs[CRK_ALGORITHM_MAX + 1];
  358         if ((sc->sc_cid = crypto_get_driverid(0)) < 0) {
printf(": failed to register cid\n");
  360                 return;
  361         }
SIMPLEQ_INIT(&sc->sc_pk_queue);
sc->sc_pk_current = NULL;
bzero(algs, sizeof(algs));
algs[CRK_MOD_EXP] = CRYPTO_ALG_FLAG_SUPPORTED;
crypto_kregister(sc->sc_cid, algs, nofn_pk_process);
  370         /* enable ALU */
r = PK_READ_4(sc, NOFN_PK_CFG2);
r &= PK_CFG2_RNG_ENA; /* preserve */
r |= PK_CFG2_ALU_ENA;
PK_WRITE_4(sc, NOFN_PK_CFG2, r);
sc->sc_intrmask |= PCIINTMASK_PK;
sc->sc_flags |= NOFN_FLAGS_PK;
  378 }
  380 void
nofn_pk_feed(sc)
  382         struct nofn_softc *sc;
  383 {
  384         struct nofn_pk_q *q;
u_int32_t r;
  387         /* Queue is empty and nothing being processed, turn off interrupt */
  388         if (SIMPLEQ_EMPTY(&sc->sc_pk_queue) &&
sc->sc_pk_current == NULL) {
r = PK_READ_4(sc, NOFN_PK_IER);
r &= PK_IER_RRDY; /* preserve */
PK_WRITE_4(sc, NOFN_PK_IER, r);
  393                 return;
  394         }
  396         /* Operation already pending, wait. */
  397         if (sc->sc_pk_current != NULL)
  398                 return;
  400         while (!SIMPLEQ_EMPTY(&sc->sc_pk_queue)) {
q = SIMPLEQ_FIRST(&sc->sc_pk_queue);
  402                 if (q->q_start(sc, q) == 0) {
sc->sc_pk_current = q;
SIMPLEQ_REMOVE_HEAD(&sc->sc_pk_queue, q_next);
r = PK_READ_4(sc, NOFN_PK_IER);
r &= PK_IER_RRDY; /* preserve */
r |= PK_IER_DONE;
PK_WRITE_4(sc, NOFN_PK_IER, r);
  410                         break;
  411                 } else {
SIMPLEQ_REMOVE_HEAD(&sc->sc_pk_queue, q_next);
free(q, M_DEVBUF);
  414                 }
  415         }
  416 }
  418 int
nofn_pk_process(krp)
  420         struct cryptkop *krp;
  421 {
  422         struct nofn_softc *sc;
  423         struct nofn_pk_q *q;
  424         int s;
  426         if (krp == NULL || krp->krp_callback == NULL)
  427                 return (EINVAL);
  428         if ((sc = nofn_pk_find(krp)) == NULL) {
krp->krp_status = EINVAL;
crypto_kdone(krp);
  431                 return (0);
  432         }
q = (struct nofn_pk_q *)malloc(sizeof(*q), M_DEVBUF, M_NOWAIT);
  435         if (q == NULL) {
krp->krp_status = ENOMEM;
crypto_kdone(krp);
  438                 return (0);
  439         }
  441         switch (krp->krp_op) {
  442         case CRK_MOD_EXP:
q->q_start = nofn_modexp_start;
q->q_finish = nofn_modexp_finish;
q->q_krp = krp;
s = splnet();
SIMPLEQ_INSERT_TAIL(&sc->sc_pk_queue, q, q_next);
nofn_pk_feed(sc);
splx(s);
  450                 return (0);
  451         default:
printf("%s: kprocess: invalid op 0x%x\n",
sc->sc_dev.dv_xname, krp->krp_op);
krp->krp_status = EOPNOTSUPP;
crypto_kdone(krp);
free(q, M_DEVBUF);
  457                 return (0);
  458         }
  459 }
  461 struct nofn_softc *
nofn_pk_find(krp)
  463         struct cryptkop *krp;
  464 {
  465         struct nofn_softc *sc;
  466         int i;
  468         for (i = 0; i < nofn_cd.cd_ndevs; i++) {
sc = nofn_cd.cd_devs[i];
  470                 if (sc == NULL)
  471                         continue;
  472                 if (sc->sc_cid == krp->krp_hid)
  473                         return (sc);
  474         }
  475         return (NULL);
  476 }
  478 void
nofn_pk_read_reg(sc, ridx, rp)
  480         struct nofn_softc *sc;
  481         int ridx;
  482         union nofn_pk_reg *rp;
  483 {
  484 #if BYTE_ORDER == BIG_ENDIAN
bus_space_read_region_4(sc->sc_pk_t, sc->sc_pk_h,
NOFN_PK_REGADDR(NOFN_PK_WIN_0, ridx, 0), rp->w, 1024/32);
  487 #else
bus_space_read_region_4(sc->sc_pk_t, sc->sc_pk_h,
NOFN_PK_REGADDR(NOFN_PK_WIN_2, ridx, 0), rp->w, 1024/32);
  490 #endif
  491 }
  493 void
nofn_pk_write_reg(sc, ridx, rp)
  495         struct nofn_softc *sc;
  496         int ridx;
  497         union nofn_pk_reg *rp;
  498 {
  499 #if BYTE_ORDER == BIG_ENDIAN
bus_space_write_region_4(sc->sc_pk_t, sc->sc_pk_h,
NOFN_PK_REGADDR(NOFN_PK_WIN_0, ridx, 0), rp->w, 1024/32);
  502 #else
bus_space_write_region_4(sc->sc_pk_t, sc->sc_pk_h,
NOFN_PK_REGADDR(NOFN_PK_WIN_2, ridx, 0), rp->w, 1024/32);
  505 #endif
  506 }
  508 void
nofn_pk_zero_reg(sc, ridx)
  510         struct nofn_softc *sc;
  511         int ridx;
  512 {
nofn_pk_write_reg(sc, ridx, &sc->sc_pk_zero);
  514 }
  516 int
nofn_modexp_start(sc, q)
  518         struct nofn_softc *sc;
  519         struct nofn_pk_q *q;
  520 {
  521         struct cryptkop *krp = q->q_krp;
  522         int ip = 0, err = 0;
  523         int mshift, eshift, nshift;
  524         int mbits, ebits, nbits;
  526         if (krp->krp_param[NOFN_MODEXP_PAR_M].crp_nbits > 1024) {
err = ERANGE;
  528                 goto errout;
  529         }
  531         /* Zero out registers. */
nofn_pk_zero_reg(sc, 0);
nofn_pk_zero_reg(sc, 1);
nofn_pk_zero_reg(sc, 2);
nofn_pk_zero_reg(sc, 3);
  537         /* Write out N... */
nbits = nofn_pk_sigbits(krp->krp_param[NOFN_MODEXP_PAR_N].crp_p,
krp->krp_param[NOFN_MODEXP_PAR_N].crp_nbits);
  540         if (nbits > 1024) {
err = E2BIG;
  542                 goto errout;
  543         }
  544         if (nbits < 5) {
err = ERANGE;
  546                 goto errout;
  547         }
bzero(&sc->sc_pk_tmp, sizeof(sc->sc_pk_tmp));
bcopy(krp->krp_param[NOFN_MODEXP_PAR_N].crp_p, &sc->sc_pk_tmp,
  550             (nbits + 7) / 8);
nofn_pk_write_reg(sc, 2, &sc->sc_pk_tmp);
nshift = 1024 - nbits;
PK_WRITE_4(sc, NOFN_PK_LENADDR(2), 1024);
  555         if (nshift != 0) {
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_SL, 2, 2, nshift));
ip += 4;
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_TAG, 2, 2, nbits));
ip += 4;
  563         }
  565         /* Write out M... */
mbits = nofn_pk_sigbits(krp->krp_param[NOFN_MODEXP_PAR_M].crp_p,
krp->krp_param[NOFN_MODEXP_PAR_M].crp_nbits);
  568         if (mbits > 1024 || mbits > nbits) {
err = E2BIG;
  570                 goto errout;
  571         }
bzero(&sc->sc_pk_tmp, sizeof(sc->sc_pk_tmp));
bcopy(krp->krp_param[NOFN_MODEXP_PAR_M].crp_p, &sc->sc_pk_tmp,
  574             (mbits + 7) / 8);
nofn_pk_write_reg(sc, 0, &sc->sc_pk_tmp);
mshift = 1024 - nbits;
PK_WRITE_4(sc, NOFN_PK_LENADDR(0), 1024);
  579         if (mshift != 0) {
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_SL, 0, 0, mshift));
ip += 4;
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_TAG, 0, 0, nbits));
ip += 4;
  587         }
  589         /* Write out E... */
ebits = nofn_pk_sigbits(krp->krp_param[NOFN_MODEXP_PAR_E].crp_p,
krp->krp_param[NOFN_MODEXP_PAR_E].crp_nbits);
  592         if (ebits > 1024 || ebits > nbits) {
err = E2BIG;
  594                 goto errout;
  595         }
  596         if (ebits < 1) {
err = ERANGE;
  598                 goto errout;
  599         }
bzero(&sc->sc_pk_tmp, sizeof(sc->sc_pk_tmp));
bcopy(krp->krp_param[NOFN_MODEXP_PAR_E].crp_p, &sc->sc_pk_tmp,
  602             (ebits + 7) / 8);
nofn_pk_write_reg(sc, 1, &sc->sc_pk_tmp);
eshift = 1024 - nbits;
PK_WRITE_4(sc, NOFN_PK_LENADDR(1), 1024);
  607         if (eshift != 0) {
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_SL, 1, 1, eshift));
ip += 4;
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_TAG, 1, 1, nbits));
ip += 4;
  615         }
  617         if (nshift == 0) {
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR(PK_OP_DONE, PK_OPCODE_MODEXP, 3, 0, 1, 2));
ip += 4;
  621         } else {
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR(0, PK_OPCODE_MODEXP, 3, 0, 1, 2));
ip += 4;
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(0, PK_OPCODE_SR, 3, 3, nshift));
ip += 4;
PK_WRITE_4(sc, NOFN_PK_INSTR_BEGIN + ip,
NOFN_PK_INSTR2(PK_OP_DONE, PK_OPCODE_TAG, 3, 3, nbits));
ip += 4;
  633         }
  635         /* Start microprogram */
PK_WRITE_4(sc, NOFN_PK_CR, 0 << PK_CR_OFFSET_S);
  638         return (0);
errout:
bzero(&sc->sc_pk_tmp, sizeof(sc->sc_pk_tmp));
nofn_pk_zero_reg(sc, 0);
nofn_pk_zero_reg(sc, 1);
nofn_pk_zero_reg(sc, 2);
nofn_pk_zero_reg(sc, 3);
krp->krp_status = err;
crypto_kdone(krp);
  648         return (1);
  649 }
  651 void
nofn_modexp_finish(sc, q)
  653         struct nofn_softc *sc;
  654         struct nofn_pk_q *q;
  655 {
  656         struct cryptkop *krp = q->q_krp;
  657         int reglen, crplen;
nofn_pk_read_reg(sc, 3, &sc->sc_pk_tmp);
reglen = ((PK_READ_4(sc, NOFN_PK_LENADDR(3)) & NOFN_PK_LENMASK) + 7)
  662             / 8;
crplen = (krp->krp_param[krp->krp_iparams].crp_nbits + 7) / 8;
  665         if (crplen <= reglen)
bcopy(sc->sc_pk_tmp.b, krp->krp_param[krp->krp_iparams].crp_p,
reglen);
  668         else {
bcopy(sc->sc_pk_tmp.b, krp->krp_param[krp->krp_iparams].crp_p,
reglen);
bzero(krp->krp_param[krp->krp_iparams].crp_p + reglen,
crplen - reglen);
  673         }
bzero(&sc->sc_pk_tmp, sizeof(sc->sc_pk_tmp));
nofn_pk_zero_reg(sc, 0);
nofn_pk_zero_reg(sc, 1);
nofn_pk_zero_reg(sc, 2);
nofn_pk_zero_reg(sc, 3);
crypto_kdone(krp);
  680 }
  682 /*
  683  * Return the number of significant bits of a little endian big number.
  684  */
  685 int
nofn_pk_sigbits(p, pbits)
  687         const u_int8_t *p;
u_int pbits;
  689 {
u_int plen = (pbits + 7) / 8;
  691         int i, sig = plen * 8;
u_int8_t c;
  694         for (i = plen - 1; i >= 0; i--) {
c = p[i];
  696                 if (c != 0) {
  697                         while ((c & 0x80) == 0) {
sig--;
c <<= 1;
  700                         }
  701                         break;
  702                 }
sig -= 8;
  704         }
  705         return (sig);
  706 }