76aa68ed86
Update AES function signatures to use const pointers for parameters that are not modified. This improves type safety and makes it easier to see which parameters are read-only. Fix the Nuvoton npcm_ae driver as well since it implements the API. Really that should be handled by a driver, but leave that for now. Functions updated: - aes_expand_key(): key parameter - aes_encrypt(): in and expkey parameters - aes_decrypt(): in and expkey parameters - aes_apply_cbc_chain_data(): cbc_chain_data and src parameters - aes_cbc_encrypt_blocks(): key_exp, iv, and src parameters - aes_cbc_decrypt_blocks(): key_exp, iv, and src parameters - add_round_key(): key parameter (internal) - debug_print_vector(): data parameter (internal) Co-developed-by: Claude <noreply@anthropic.com> Signed-off-by: Simon Glass <simon.glass@canonical.com>
111 lines
3.5 KiB
C
111 lines
3.5 KiB
C
/* SPDX-License-Identifier: GPL-2.0+ */
|
|
/*
|
|
* Copyright (c) 2011 The Chromium OS Authors.
|
|
* (C) Copyright 2010 - 2011 NVIDIA Corporation <www.nvidia.com>
|
|
*/
|
|
|
|
#ifndef _AES_REF_H_
|
|
#define _AES_REF_H_
|
|
|
|
#ifdef USE_HOSTCC
|
|
/* Define compat stuff for use in fw_* tools. */
|
|
typedef unsigned char u8;
|
|
typedef unsigned int u32;
|
|
#define debug(...) do {} while (0)
|
|
#endif
|
|
|
|
/*
|
|
* AES encryption library, with small code size, supporting only 128-bit AES
|
|
*
|
|
* AES is a stream cipher which works a block at a time, with each block
|
|
* in this case being AES_BLOCK_LENGTH bytes.
|
|
*/
|
|
|
|
enum {
|
|
AES_STATECOLS = 4, /* columns in the state & expanded key */
|
|
AES128_KEYCOLS = 4, /* columns in a key for aes128 */
|
|
AES192_KEYCOLS = 6, /* columns in a key for aes128 */
|
|
AES256_KEYCOLS = 8, /* columns in a key for aes128 */
|
|
AES128_ROUNDS = 10, /* rounds in encryption for aes128 */
|
|
AES192_ROUNDS = 12, /* rounds in encryption for aes192 */
|
|
AES256_ROUNDS = 14, /* rounds in encryption for aes256 */
|
|
AES128_KEY_LENGTH = 128 / 8,
|
|
AES192_KEY_LENGTH = 192 / 8,
|
|
AES256_KEY_LENGTH = 256 / 8,
|
|
AES128_EXPAND_KEY_LENGTH = 4 * AES_STATECOLS * (AES128_ROUNDS + 1),
|
|
AES192_EXPAND_KEY_LENGTH = 4 * AES_STATECOLS * (AES192_ROUNDS + 1),
|
|
AES256_EXPAND_KEY_LENGTH = 4 * AES_STATECOLS * (AES256_ROUNDS + 1),
|
|
AES_BLOCK_LENGTH = 128 / 8,
|
|
};
|
|
|
|
/**
|
|
* aes_expand_key() - Expand the AES key
|
|
*
|
|
* Expand a key into a key schedule, which is then used for the other
|
|
* operations.
|
|
*
|
|
* @key Key (not modified)
|
|
* @key_size Size of the key (in bits)
|
|
* @expkey Buffer to place expanded key, AES_EXPAND_KEY_LENGTH
|
|
*/
|
|
void aes_expand_key(const u8 *key, u32 key_size, u8 *expkey);
|
|
|
|
/**
|
|
* aes_encrypt() - Encrypt single block of data with AES 128
|
|
*
|
|
* @key_size Size of the aes key (in bits)
|
|
* @in Input data (not modified)
|
|
* @expkey Expanded key to use for encryption (from aes_expand_key(), not modified)
|
|
* @out Output data
|
|
*/
|
|
void aes_encrypt(u32 key_size, const u8 *in, const u8 *expkey, u8 *out);
|
|
|
|
/**
|
|
* aes_decrypt() - Decrypt single block of data with AES 128
|
|
*
|
|
* @key_size Size of the aes key (in bits)
|
|
* @in Input data (not modified)
|
|
* @expkey Expanded key to use for decryption (from aes_expand_key(), not modified)
|
|
* @out Output data
|
|
*/
|
|
void aes_decrypt(u32 key_size, const u8 *in, const u8 *expkey, u8 *out);
|
|
|
|
/**
|
|
* Apply chain data to the destination using EOR
|
|
*
|
|
* Each array is of length AES_BLOCK_LENGTH.
|
|
*
|
|
* @cbc_chain_data Chain data (not modified)
|
|
* @src Source data (not modified)
|
|
* @dst Destination data, which is modified here
|
|
*/
|
|
void aes_apply_cbc_chain_data(const u8 *cbc_chain_data, const u8 *src, u8 *dst);
|
|
|
|
/**
|
|
* aes_cbc_encrypt_blocks() - Encrypt multiple blocks of data with AES CBC.
|
|
*
|
|
* @key_size Size of the aes key (in bits)
|
|
* @key_exp Expanded key to use (not modified)
|
|
* @iv Initialization vector (not modified)
|
|
* @src Source data to encrypt (not modified)
|
|
* @dst Destination buffer
|
|
* @num_aes_blocks Number of AES blocks to encrypt
|
|
*/
|
|
void aes_cbc_encrypt_blocks(u32 key_size, const u8 *key_exp, const u8 *iv,
|
|
const u8 *src, u8 *dst, u32 num_aes_blocks);
|
|
|
|
/**
|
|
* Decrypt multiple blocks of data with AES CBC.
|
|
*
|
|
* @key_size Size of the aes key (in bits)
|
|
* @key_exp Expanded key to use (not modified)
|
|
* @iv Initialization vector (not modified)
|
|
* @src Source data to decrypt (not modified)
|
|
* @dst Destination buffer
|
|
* @num_aes_blocks Number of AES blocks to decrypt
|
|
*/
|
|
void aes_cbc_decrypt_blocks(u32 key_size, const u8 *key_exp, const u8 *iv,
|
|
const u8 *src, u8 *dst, u32 num_aes_blocks);
|
|
|
|
#endif /* _AES_REF_H_ */
|