mirror of
https://github.com/wolfSSL/wolfssl.git
synced 2025-08-04 13:14:45 +02:00
Fix for STM32 AES-CTR (tested on STM32F437). Improvement to the STM32 RNG code to detect improper RNG_CLK. Cleanup of the PIC32MZ Aes struct variables and the AES-CTR (tested on PIC32MZ2048).
This commit is contained in:
David Garske
@@ -602,7 +602,7 @@
|
|||||||
|
|
||||||
static int wc_AesEncrypt(Aes* aes, const byte* inBlock, byte* outBlock)
|
static int wc_AesEncrypt(Aes* aes, const byte* inBlock, byte* outBlock)
|
||||||
{
|
{
|
||||||
return wc_Pic32AesCrypt(aes->key_ce, aes->keylen, NULL, 0,
|
return wc_Pic32AesCrypt(aes->key, aes->keylen, NULL, 0,
|
||||||
outBlock, inBlock, AES_BLOCK_SIZE,
|
outBlock, inBlock, AES_BLOCK_SIZE,
|
||||||
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RECB);
|
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RECB);
|
||||||
}
|
}
|
||||||
@@ -610,7 +610,7 @@
|
|||||||
#ifdef HAVE_AES_DECRYPT
|
#ifdef HAVE_AES_DECRYPT
|
||||||
static int wc_AesDecrypt(Aes* aes, const byte* inBlock, byte* outBlock)
|
static int wc_AesDecrypt(Aes* aes, const byte* inBlock, byte* outBlock)
|
||||||
{
|
{
|
||||||
return wc_Pic32AesCrypt(aes->key_ce, aes->keylen, NULL, 0,
|
return wc_Pic32AesCrypt(aes->key, aes->keylen, NULL, 0,
|
||||||
outBlock, inBlock, AES_BLOCK_SIZE,
|
outBlock, inBlock, AES_BLOCK_SIZE,
|
||||||
PIC32_DECRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RECB);
|
PIC32_DECRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RECB);
|
||||||
}
|
}
|
||||||
@@ -1996,14 +1996,10 @@ static void wc_AesDecrypt(Aes* aes, const byte* inBlock, byte* outBlock)
|
|||||||
aes->rounds = (keylen/4) + 6;
|
aes->rounds = (keylen/4) + 6;
|
||||||
|
|
||||||
XMEMCPY(rk, userKey, keylen);
|
XMEMCPY(rk, userKey, keylen);
|
||||||
#ifdef LITTLE_ENDIAN_ORDER
|
#if defined(LITTLE_ENDIAN_ORDER) && !defined(WOLFSSL_PIC32MZ_CRYPT)
|
||||||
ByteReverseWords(rk, rk, keylen);
|
ByteReverseWords(rk, rk, keylen);
|
||||||
#endif
|
#endif
|
||||||
|
|
||||||
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
|
||||||
XMEMCPY((word32*)aes->key_ce, userKey, keylen);
|
|
||||||
#endif
|
|
||||||
|
|
||||||
#ifdef NEED_AES_TABLES
|
#ifdef NEED_AES_TABLES
|
||||||
|
|
||||||
switch (keylen) {
|
switch (keylen) {
|
||||||
@@ -2208,10 +2204,6 @@ int wc_AesSetIV(Aes* aes, const byte* iv)
|
|||||||
else
|
else
|
||||||
XMEMSET(aes->reg, 0, AES_BLOCK_SIZE);
|
XMEMSET(aes->reg, 0, AES_BLOCK_SIZE);
|
||||||
|
|
||||||
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
|
||||||
XMEMCPY(aes->iv_ce, aes->reg, AES_BLOCK_SIZE);
|
|
||||||
#endif
|
|
||||||
|
|
||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -2800,7 +2792,7 @@ int wc_AesSetIV(Aes* aes, const byte* iv)
|
|||||||
int wc_AesCbcEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
int wc_AesCbcEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
||||||
{
|
{
|
||||||
return wc_Pic32AesCrypt(
|
return wc_Pic32AesCrypt(
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
aes->key, aes->keylen, aes->reg, AES_BLOCK_SIZE,
|
||||||
out, in, sz, PIC32_ENCRYPTION,
|
out, in, sz, PIC32_ENCRYPTION,
|
||||||
PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCBC);
|
PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCBC);
|
||||||
}
|
}
|
||||||
@@ -2808,7 +2800,7 @@ int wc_AesSetIV(Aes* aes, const byte* iv)
|
|||||||
int wc_AesCbcDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
int wc_AesCbcDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
||||||
{
|
{
|
||||||
return wc_Pic32AesCrypt(
|
return wc_Pic32AesCrypt(
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
aes->key, aes->keylen, aes->reg, AES_BLOCK_SIZE,
|
||||||
out, in, sz, PIC32_DECRYPTION,
|
out, in, sz, PIC32_DECRYPTION,
|
||||||
PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCBC);
|
PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCBC);
|
||||||
}
|
}
|
||||||
@@ -3015,38 +3007,15 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
/* AES-CTR */
|
/* AES-CTR */
|
||||||
#if defined(WOLFSSL_AES_COUNTER)
|
#if defined(WOLFSSL_AES_COUNTER)
|
||||||
|
|
||||||
#ifndef FREESCALE_LTC /* LTC doesn't need soft counter */
|
|
||||||
/* Increment AES counter */
|
|
||||||
static INLINE void IncrementAesCounter(byte* inOutCtr)
|
|
||||||
{
|
|
||||||
/* in network byte order so start at end and work back */
|
|
||||||
int i;
|
|
||||||
for (i = AES_BLOCK_SIZE - 1; i >= 0; i--) {
|
|
||||||
if (++inOutCtr[i]) /* we're done unless we overflow */
|
|
||||||
return;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
#endif
|
|
||||||
|
|
||||||
#ifdef STM32_CRYPTO
|
#ifdef STM32_CRYPTO
|
||||||
#ifdef WOLFSSL_STM32_CUBEMX
|
#define NEED_AES_CTR_SOFT
|
||||||
int wc_AesCtrEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
#define XTRANSFORM_AESCTRBLOCK wc_AesCtrEncryptBlock
|
||||||
|
|
||||||
|
int wc_AesCtrEncryptBlock(Aes* aes, byte* out, const byte* in)
|
||||||
{
|
{
|
||||||
int ret = 0;
|
int ret = 0;
|
||||||
|
#ifdef WOLFSSL_STM32_CUBEMX
|
||||||
CRYP_HandleTypeDef hcryp;
|
CRYP_HandleTypeDef hcryp;
|
||||||
byte* tmp;
|
|
||||||
|
|
||||||
if (aes == NULL || out == NULL || in == NULL) {
|
|
||||||
return BAD_FUNC_ARG;
|
|
||||||
}
|
|
||||||
|
|
||||||
/* consume any unused bytes left in aes->tmp */
|
|
||||||
tmp = (byte*)aes->tmp + AES_BLOCK_SIZE - aes->left;
|
|
||||||
while (aes->left && sz) {
|
|
||||||
*(out++) = *(in++) ^ *(tmp++);
|
|
||||||
aes->left--;
|
|
||||||
sz--;
|
|
||||||
}
|
|
||||||
|
|
||||||
XMEMSET(&hcryp, 0, sizeof(CRYP_HandleTypeDef));
|
XMEMSET(&hcryp, 0, sizeof(CRYP_HandleTypeDef));
|
||||||
switch (aes->rounds) {
|
switch (aes->rounds) {
|
||||||
@@ -3069,38 +3038,20 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
|
|
||||||
HAL_CRYP_Init(&hcryp);
|
HAL_CRYP_Init(&hcryp);
|
||||||
|
|
||||||
if (HAL_CRYP_AESCTR_Encrypt(&hcryp, (byte*)in, sz, out,
|
if (HAL_CRYP_AESCTR_Encrypt(&hcryp, (byte*)in, AES_BLOCK_SIZE, out,
|
||||||
STM32_HAL_TIMEOUT) != HAL_OK) {
|
STM32_HAL_TIMEOUT) != HAL_OK) {
|
||||||
/* failed */
|
/* failed */
|
||||||
ret = WC_TIMEOUT_E;
|
ret = WC_TIMEOUT_E;
|
||||||
}
|
}
|
||||||
IncrementAesCounter((byte*)aes->reg);
|
|
||||||
|
|
||||||
HAL_CRYP_DeInit(&hcryp);
|
HAL_CRYP_DeInit(&hcryp);
|
||||||
|
|
||||||
return ret;
|
#else /* STD_PERI_LIB */
|
||||||
}
|
|
||||||
#else
|
|
||||||
int wc_AesCtrEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|
||||||
{
|
|
||||||
word32 *enc_key, *iv;
|
word32 *enc_key, *iv;
|
||||||
byte* tmp;
|
|
||||||
CRYP_InitTypeDef AES_CRYP_InitStructure;
|
CRYP_InitTypeDef AES_CRYP_InitStructure;
|
||||||
CRYP_KeyInitTypeDef AES_CRYP_KeyInitStructure;
|
CRYP_KeyInitTypeDef AES_CRYP_KeyInitStructure;
|
||||||
CRYP_IVInitTypeDef AES_CRYP_IVInitStructure;
|
CRYP_IVInitTypeDef AES_CRYP_IVInitStructure;
|
||||||
|
|
||||||
if (aes == NULL || out == NULL || in == NULL) {
|
|
||||||
return BAD_FUNC_ARG;
|
|
||||||
}
|
|
||||||
|
|
||||||
/* consume any unused bytes left in aes->tmp */
|
|
||||||
tmp = (byte*)aes->tmp + AES_BLOCK_SIZE - aes->left;
|
|
||||||
while (aes->left && sz) {
|
|
||||||
*(out++) = *(in++) ^ *(tmp++);
|
|
||||||
aes->left--;
|
|
||||||
sz--;
|
|
||||||
}
|
|
||||||
|
|
||||||
enc_key = aes->key;
|
enc_key = aes->key;
|
||||||
iv = aes->reg;
|
iv = aes->reg;
|
||||||
|
|
||||||
@@ -3121,7 +3072,6 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
AES_CRYP_KeyInitStructure.CRYP_Key3Left = enc_key[2];
|
AES_CRYP_KeyInitStructure.CRYP_Key3Left = enc_key[2];
|
||||||
AES_CRYP_KeyInitStructure.CRYP_Key3Right = enc_key[3];
|
AES_CRYP_KeyInitStructure.CRYP_Key3Right = enc_key[3];
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case 12: /* 192-bit key */
|
case 12: /* 192-bit key */
|
||||||
AES_CRYP_InitStructure.CRYP_KeySize = CRYP_KeySize_192b;
|
AES_CRYP_InitStructure.CRYP_KeySize = CRYP_KeySize_192b;
|
||||||
AES_CRYP_KeyInitStructure.CRYP_Key1Left = enc_key[0];
|
AES_CRYP_KeyInitStructure.CRYP_Key1Left = enc_key[0];
|
||||||
@@ -3131,7 +3081,6 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
AES_CRYP_KeyInitStructure.CRYP_Key3Left = enc_key[4];
|
AES_CRYP_KeyInitStructure.CRYP_Key3Left = enc_key[4];
|
||||||
AES_CRYP_KeyInitStructure.CRYP_Key3Right = enc_key[5];
|
AES_CRYP_KeyInitStructure.CRYP_Key3Right = enc_key[5];
|
||||||
break;
|
break;
|
||||||
|
|
||||||
case 14: /* 256-bit key */
|
case 14: /* 256-bit key */
|
||||||
AES_CRYP_InitStructure.CRYP_KeySize = CRYP_KeySize_256b;
|
AES_CRYP_InitStructure.CRYP_KeySize = CRYP_KeySize_256b;
|
||||||
AES_CRYP_KeyInitStructure.CRYP_Key0Left = enc_key[0];
|
AES_CRYP_KeyInitStructure.CRYP_Key0Left = enc_key[0];
|
||||||
@@ -3143,18 +3092,16 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
AES_CRYP_KeyInitStructure.CRYP_Key3Left = enc_key[6];
|
AES_CRYP_KeyInitStructure.CRYP_Key3Left = enc_key[6];
|
||||||
AES_CRYP_KeyInitStructure.CRYP_Key3Right = enc_key[7];
|
AES_CRYP_KeyInitStructure.CRYP_Key3Right = enc_key[7];
|
||||||
break;
|
break;
|
||||||
|
|
||||||
default:
|
default:
|
||||||
break;
|
break;
|
||||||
}
|
}
|
||||||
CRYP_KeyInit(&AES_CRYP_KeyInitStructure);
|
CRYP_KeyInit(&AES_CRYP_KeyInitStructure);
|
||||||
|
|
||||||
/* set iv */
|
/* set iv */
|
||||||
ByteReverseWords(iv, iv, AES_BLOCK_SIZE);
|
AES_CRYP_IVInitStructure.CRYP_IV0Left = ByteReverseWord32(iv[0]);
|
||||||
AES_CRYP_IVInitStructure.CRYP_IV0Left = iv[0];
|
AES_CRYP_IVInitStructure.CRYP_IV0Right = ByteReverseWord32(iv[1]);
|
||||||
AES_CRYP_IVInitStructure.CRYP_IV0Right = iv[1];
|
AES_CRYP_IVInitStructure.CRYP_IV1Left = ByteReverseWord32(iv[2]);
|
||||||
AES_CRYP_IVInitStructure.CRYP_IV1Left = iv[2];
|
AES_CRYP_IVInitStructure.CRYP_IV1Right = ByteReverseWord32(iv[3]);
|
||||||
AES_CRYP_IVInitStructure.CRYP_IV1Right = iv[3];
|
|
||||||
CRYP_IVInit(&AES_CRYP_IVInitStructure);
|
CRYP_IVInit(&AES_CRYP_IVInitStructure);
|
||||||
|
|
||||||
/* set direction, mode, and datatype */
|
/* set direction, mode, and datatype */
|
||||||
@@ -3166,117 +3113,43 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
/* enable crypto processor */
|
/* enable crypto processor */
|
||||||
CRYP_Cmd(ENABLE);
|
CRYP_Cmd(ENABLE);
|
||||||
|
|
||||||
while (sz >= AES_BLOCK_SIZE) {
|
/* flush IN/OUT FIFOs */
|
||||||
/* flush IN/OUT FIFOs */
|
CRYP_FIFOFlush();
|
||||||
CRYP_FIFOFlush();
|
|
||||||
|
|
||||||
CRYP_DataIn(*(uint32_t*)&in[0]);
|
CRYP_DataIn(*(uint32_t*)&in[0]);
|
||||||
CRYP_DataIn(*(uint32_t*)&in[4]);
|
CRYP_DataIn(*(uint32_t*)&in[4]);
|
||||||
CRYP_DataIn(*(uint32_t*)&in[8]);
|
CRYP_DataIn(*(uint32_t*)&in[8]);
|
||||||
CRYP_DataIn(*(uint32_t*)&in[12]);
|
CRYP_DataIn(*(uint32_t*)&in[12]);
|
||||||
|
|
||||||
/* wait until the complete message has been processed */
|
/* wait until the complete message has been processed */
|
||||||
while (CRYP_GetFlagStatus(CRYP_FLAG_BUSY) != RESET) {}
|
while (CRYP_GetFlagStatus(CRYP_FLAG_BUSY) != RESET) {}
|
||||||
|
|
||||||
*(uint32_t*)&out[0] = CRYP_DataOut();
|
*(uint32_t*)&out[0] = CRYP_DataOut();
|
||||||
*(uint32_t*)&out[4] = CRYP_DataOut();
|
*(uint32_t*)&out[4] = CRYP_DataOut();
|
||||||
*(uint32_t*)&out[8] = CRYP_DataOut();
|
*(uint32_t*)&out[8] = CRYP_DataOut();
|
||||||
*(uint32_t*)&out[12] = CRYP_DataOut();
|
*(uint32_t*)&out[12] = CRYP_DataOut();
|
||||||
|
|
||||||
IncrementAesCounter((byte*)aes->reg);
|
|
||||||
|
|
||||||
sz -= AES_BLOCK_SIZE;
|
|
||||||
in += AES_BLOCK_SIZE;
|
|
||||||
out += AES_BLOCK_SIZE;
|
|
||||||
aes->left = 0;
|
|
||||||
}
|
|
||||||
|
|
||||||
/* disable crypto processor */
|
/* disable crypto processor */
|
||||||
CRYP_Cmd(DISABLE);
|
CRYP_Cmd(DISABLE);
|
||||||
|
|
||||||
/* handle non block size remaining and store unused byte count in left */
|
|
||||||
if (sz) {
|
|
||||||
wc_AesEncrypt(aes, (byte*)aes->reg, (byte*)aes->tmp);
|
|
||||||
IncrementAesCounter((byte*)aes->reg);
|
|
||||||
|
|
||||||
aes->left = AES_BLOCK_SIZE;
|
|
||||||
tmp = (byte*)aes->tmp;
|
|
||||||
|
|
||||||
while (sz--) {
|
|
||||||
*(out++) = *(in++) ^ *(tmp++);
|
|
||||||
aes->left--;
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return 0;
|
|
||||||
}
|
|
||||||
#endif /* WOLFSSL_STM32_CUBEMX */
|
#endif /* WOLFSSL_STM32_CUBEMX */
|
||||||
|
return ret;
|
||||||
|
}
|
||||||
|
|
||||||
|
|
||||||
#elif defined(WOLFSSL_PIC32MZ_CRYPT)
|
#elif defined(WOLFSSL_PIC32MZ_CRYPT)
|
||||||
|
|
||||||
int wc_AesCtrEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
#define NEED_AES_CTR_SOFT
|
||||||
|
#define XTRANSFORM_AESCTRBLOCK wc_AesCtrEncryptBlock
|
||||||
|
|
||||||
|
int wc_AesCtrEncryptBlock(Aes* aes, byte* out, const byte* in)
|
||||||
{
|
{
|
||||||
int ret = 0;
|
word32 tmpIv[AES_BLOCK_SIZE / sizeof(word32)];
|
||||||
byte out_block[AES_BLOCK_SIZE];
|
XMEMCPY(tmpIv, aes->reg, AES_BLOCK_SIZE);
|
||||||
int odd, even, blocks;
|
return wc_Pic32AesCrypt(
|
||||||
byte *tmp;
|
aes->key, aes->keylen, tmpIv, AES_BLOCK_SIZE,
|
||||||
|
out, in, AES_BLOCK_SIZE,
|
||||||
if (aes == NULL || out == NULL || in == NULL) {
|
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCTR);
|
||||||
return BAD_FUNC_ARG;
|
|
||||||
}
|
|
||||||
|
|
||||||
tmp = (byte *)aes->tmp;
|
|
||||||
if (aes->left) {
|
|
||||||
if ((aes->left + sz) >= AES_BLOCK_SIZE) {
|
|
||||||
odd = AES_BLOCK_SIZE - aes->left;
|
|
||||||
} else {
|
|
||||||
odd = sz;
|
|
||||||
}
|
|
||||||
XMEMCPY(tmp + aes->left, in, odd);
|
|
||||||
if ((odd + aes->left) == AES_BLOCK_SIZE) {
|
|
||||||
ret = wc_Pic32AesCrypt(
|
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
|
||||||
out_block, tmp, AES_BLOCK_SIZE,
|
|
||||||
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCTR);
|
|
||||||
XMEMCPY(out, out_block + aes->left, odd);
|
|
||||||
aes->left = 0;
|
|
||||||
XMEMSET(tmp, 0x0, AES_BLOCK_SIZE);
|
|
||||||
IncrementAesCounter((byte*)aes->reg);
|
|
||||||
}
|
|
||||||
in += odd;
|
|
||||||
out+= odd;
|
|
||||||
sz -= odd;
|
|
||||||
}
|
|
||||||
|
|
||||||
blocks = sz / AES_BLOCK_SIZE;
|
|
||||||
if (blocks) {
|
|
||||||
even = blocks * AES_BLOCK_SIZE;
|
|
||||||
ret = wc_Pic32AesCrypt(
|
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
|
||||||
out, in, even,
|
|
||||||
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCTR);
|
|
||||||
out += even;
|
|
||||||
in += even;
|
|
||||||
do {
|
|
||||||
IncrementAesCounter((byte*)aes->reg);
|
|
||||||
even -= AES_BLOCK_SIZE;
|
|
||||||
} while (even > 0);
|
|
||||||
}
|
|
||||||
|
|
||||||
/* if there is tail fragment */
|
|
||||||
odd = sz % AES_BLOCK_SIZE;
|
|
||||||
if (odd) {
|
|
||||||
XMEMSET(tmp + aes->left, 0x0, AES_BLOCK_SIZE - aes->left);
|
|
||||||
XMEMCPY(tmp + aes->left, in, odd);
|
|
||||||
ret = wc_Pic32AesCrypt(
|
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
|
||||||
out_block, tmp, AES_BLOCK_SIZE,
|
|
||||||
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_RCTR);
|
|
||||||
XMEMCPY(out, out_block + aes->left, odd);
|
|
||||||
aes->left += odd;
|
|
||||||
}
|
|
||||||
|
|
||||||
return ret;
|
|
||||||
}
|
}
|
||||||
|
|
||||||
#elif defined(HAVE_COLDFIRE_SEC)
|
#elif defined(HAVE_COLDFIRE_SEC)
|
||||||
@@ -3317,6 +3190,22 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
|
|
||||||
#else
|
#else
|
||||||
|
|
||||||
|
/* Use software based AES counter */
|
||||||
|
#define NEED_AES_CTR_SOFT
|
||||||
|
#endif
|
||||||
|
|
||||||
|
#ifdef NEED_AES_CTR_SOFT
|
||||||
|
/* Increment AES counter */
|
||||||
|
static INLINE void IncrementAesCounter(byte* inOutCtr)
|
||||||
|
{
|
||||||
|
/* in network byte order so start at end and work back */
|
||||||
|
int i;
|
||||||
|
for (i = AES_BLOCK_SIZE - 1; i >= 0; i--) {
|
||||||
|
if (++inOutCtr[i]) /* we're done unless we overflow */
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
int wc_AesCtrEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
int wc_AesCtrEncrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
||||||
{
|
{
|
||||||
byte* tmp;
|
byte* tmp;
|
||||||
@@ -3335,9 +3224,13 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
|
|
||||||
/* do as many block size ops as possible */
|
/* do as many block size ops as possible */
|
||||||
while (sz >= AES_BLOCK_SIZE) {
|
while (sz >= AES_BLOCK_SIZE) {
|
||||||
|
#ifdef XTRANSFORM_AESCTRBLOCK
|
||||||
|
XTRANSFORM_AESCTRBLOCK(aes, out, in);
|
||||||
|
#else
|
||||||
wc_AesEncrypt(aes, (byte*)aes->reg, out);
|
wc_AesEncrypt(aes, (byte*)aes->reg, out);
|
||||||
IncrementAesCounter((byte*)aes->reg);
|
|
||||||
xorbuf(out, in, AES_BLOCK_SIZE);
|
xorbuf(out, in, AES_BLOCK_SIZE);
|
||||||
|
#endif
|
||||||
|
IncrementAesCounter((byte*)aes->reg);
|
||||||
|
|
||||||
out += AES_BLOCK_SIZE;
|
out += AES_BLOCK_SIZE;
|
||||||
in += AES_BLOCK_SIZE;
|
in += AES_BLOCK_SIZE;
|
||||||
@@ -3362,7 +3255,7 @@ int wc_AesEcbDecrypt(Aes* aes, byte* out, const byte* in, word32 sz)
|
|||||||
return 0;
|
return 0;
|
||||||
}
|
}
|
||||||
|
|
||||||
#endif /* AES-CTR block */
|
#endif /* NEED_AES_CTR_SOFT */
|
||||||
|
|
||||||
#endif /* WOLFSSL_AES_COUNTER */
|
#endif /* WOLFSSL_AES_COUNTER */
|
||||||
|
|
||||||
@@ -7169,10 +7062,10 @@ int wc_AesGcmEncrypt(Aes* aes, byte* out, const byte* in, word32 sz,
|
|||||||
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
||||||
if (blocks) {
|
if (blocks) {
|
||||||
/* use intitial IV for PIC32 HW, but don't use it below */
|
/* use intitial IV for PIC32 HW, but don't use it below */
|
||||||
XMEMCPY(aes->iv_ce, ctr, AES_BLOCK_SIZE);
|
XMEMCPY(aes->reg, ctr, AES_BLOCK_SIZE);
|
||||||
|
|
||||||
ret = wc_Pic32AesCrypt(
|
ret = wc_Pic32AesCrypt(
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
aes->key, aes->keylen, aes->reg, AES_BLOCK_SIZE,
|
||||||
out, in, (blocks * AES_BLOCK_SIZE),
|
out, in, (blocks * AES_BLOCK_SIZE),
|
||||||
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_AES_GCM);
|
PIC32_ENCRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_AES_GCM);
|
||||||
if (ret != 0)
|
if (ret != 0)
|
||||||
@@ -7442,10 +7335,10 @@ int wc_AesGcmDecrypt(Aes* aes, byte* out, const byte* in, word32 sz,
|
|||||||
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
||||||
if (blocks) {
|
if (blocks) {
|
||||||
/* use intitial IV for PIC32 HW, but don't use it below */
|
/* use intitial IV for PIC32 HW, but don't use it below */
|
||||||
XMEMCPY(aes->iv_ce, ctr, AES_BLOCK_SIZE);
|
XMEMCPY(aes->reg, ctr, AES_BLOCK_SIZE);
|
||||||
|
|
||||||
ret = wc_Pic32AesCrypt(
|
ret = wc_Pic32AesCrypt(
|
||||||
aes->key_ce, aes->keylen, aes->iv_ce, AES_BLOCK_SIZE,
|
aes->key, aes->keylen, aes->reg, AES_BLOCK_SIZE,
|
||||||
out, in, (blocks * AES_BLOCK_SIZE),
|
out, in, (blocks * AES_BLOCK_SIZE),
|
||||||
PIC32_DECRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_AES_GCM);
|
PIC32_DECRYPTION, PIC32_ALGO_AES, PIC32_CRYPTOALGO_AES_GCM);
|
||||||
if (ret != 0)
|
if (ret != 0)
|
||||||
|
|||||||
@@ -1447,12 +1447,19 @@ int wc_GenerateSeed(OS_Seed* os, byte* output, word32 sz)
|
|||||||
/* enable RNG clock source */
|
/* enable RNG clock source */
|
||||||
RCC_AHB2PeriphClockCmd(RCC_AHB2Periph_RNG, ENABLE);
|
RCC_AHB2PeriphClockCmd(RCC_AHB2Periph_RNG, ENABLE);
|
||||||
|
|
||||||
|
/* reset RNG */
|
||||||
|
RNG_DeInit();
|
||||||
|
|
||||||
/* enable RNG peripheral */
|
/* enable RNG peripheral */
|
||||||
RNG_Cmd(ENABLE);
|
RNG_Cmd(ENABLE);
|
||||||
|
|
||||||
|
/* verify no errors with RNG_CLK or Seed */
|
||||||
|
if (RNG_GetFlagStatus(RNG_FLAG_SECS | RNG_FLAG_CECS) != RESET)
|
||||||
|
return RNG_FAILURE_E;
|
||||||
|
|
||||||
for (i = 0; i < (int)sz; i++) {
|
for (i = 0; i < (int)sz; i++) {
|
||||||
/* wait until RNG number is ready */
|
/* wait until RNG number is ready */
|
||||||
while(RNG_GetFlagStatus(RNG_FLAG_DRDY)== RESET) { }
|
while (RNG_GetFlagStatus(RNG_FLAG_DRDY) == RESET) { }
|
||||||
|
|
||||||
/* get value */
|
/* get value */
|
||||||
output[i] = RNG_GetRandomNumber();
|
output[i] = RNG_GetRandomNumber();
|
||||||
|
|||||||
@@ -5030,8 +5030,6 @@ int aes_test(void)
|
|||||||
if (XMEMCMP(cipher, ctr128Cipher, sizeof(oddCipher)))
|
if (XMEMCMP(cipher, ctr128Cipher, sizeof(oddCipher)))
|
||||||
return -4216;
|
return -4216;
|
||||||
|
|
||||||
/* test not supported on STM32 crypto HW or PIC32MZ HW */
|
|
||||||
#if !defined(STM32_CRYPTO) && !defined(WOLFSSL_PIC32MZ_CRYPT)
|
|
||||||
/* and an additional 9 bytes to reuse tmp left buffer */
|
/* and an additional 9 bytes to reuse tmp left buffer */
|
||||||
ret = wc_AesCtrEncrypt(&enc, cipher, ctrPlain, sizeof(oddCipher));
|
ret = wc_AesCtrEncrypt(&enc, cipher, ctrPlain, sizeof(oddCipher));
|
||||||
if (ret != 0) {
|
if (ret != 0) {
|
||||||
@@ -5047,7 +5045,6 @@ int aes_test(void)
|
|||||||
|
|
||||||
if (XMEMCMP(cipher, oddCipher, sizeof(oddCipher)))
|
if (XMEMCMP(cipher, oddCipher, sizeof(oddCipher)))
|
||||||
return -4218;
|
return -4218;
|
||||||
#endif
|
|
||||||
|
|
||||||
/* 192 bit key */
|
/* 192 bit key */
|
||||||
wc_AesSetKeyDirect(&enc, ctr192Key, sizeof(ctr192Key),
|
wc_AesSetKeyDirect(&enc, ctr192Key, sizeof(ctr192Key),
|
||||||
|
|||||||
@@ -100,10 +100,6 @@ typedef struct Aes {
|
|||||||
#ifdef WOLFSSL_AES_COUNTER
|
#ifdef WOLFSSL_AES_COUNTER
|
||||||
word32 left; /* unused bytes left from last call */
|
word32 left; /* unused bytes left from last call */
|
||||||
#endif
|
#endif
|
||||||
#ifdef WOLFSSL_PIC32MZ_CRYPT
|
|
||||||
word32 key_ce[AES_BLOCK_SIZE*2/sizeof(word32)];
|
|
||||||
word32 iv_ce [AES_BLOCK_SIZE /sizeof(word32)];
|
|
||||||
#endif
|
|
||||||
#ifdef WOLFSSL_XILINX_CRYPT
|
#ifdef WOLFSSL_XILINX_CRYPT
|
||||||
XSecure_Aes xilAes;
|
XSecure_Aes xilAes;
|
||||||
XCsuDma dma;
|
XCsuDma dma;
|
||||||
|
|||||||
Reference in New Issue
Block a user