/** * @file sdrv_crypto_mailbox_ske_xts.c * @brief crypto ske xts cmd interface * XTS mode is only available for AES and SM4(block length is 128bits) * plain must padding block len, bytelen is msg len before padding * * @copyright Copyright (c) 2021 Semidrive Semiconductor. * All rights reserved. */ #include /** * @brief ske xts enc * * This function ske xts enc * * @param[in] mode ske mode * @param[in] plain plain buff * @param[in] bytelen plain bytelen * @param[in] key_type enc key type * @param[in] key enc key buff * @param[in] key_id enc key id * @param[in] iv iv buff * @param[out] cipher out buff * @param[in] mac_buf mac buff * @return CMD_RETURN_SUCCESS or error code. */ sdrv_crypto_error_status_e cmd_ske_xts_enc(uint8_t mode, uint8_t *plain, uint32_t bytelen, cmd_key_type_e key_type, uint8_t *key, uint16_t key_id, uint8_t *iv, uint8_t *cipher, uint8_t *mac_buf) { uint16_t key_id_array[2]; uint32_t cmd_buf[8] = {0}; uint32_t ret; cmd_ske_encrypt_t *cmd_encrypt = NULL; cmd_encrypt = (cmd_ske_encrypt_t *)cmd_buf; cmd_encrypt->cmd_id = SKE_ENCRYPT; cmd_encrypt->mode = mode; set_big_endian_4byte((uint8_t *)cmd_encrypt->iv_ptr, (uint32_t)iv); set_big_endian_4byte((uint8_t *)cmd_encrypt->data_ptr, (uint32_t)plain); set_big_endian_4byte((uint8_t *)cmd_encrypt->data_len, (uint32_t)bytelen); set_big_endian_4byte((uint8_t *)cmd_encrypt->aut_info_ptr, (uint32_t)mac_buf); if (CMD_KEY_EXTERNAL_PLAINTEXT == key_type) { key_id_array[0] = 0; key_id_array[1] = 0; set_big_endian_4byte((uint8_t *)cmd_encrypt->key_ptr, (uint32_t)key); } else if (CMD_KEY_EXTERNAL_CIPHERTEXT == key_type) { key_id_array[0] = 0; key_id_array[1] = key_id; set_big_endian_4byte((uint8_t *)cmd_encrypt->key_ptr, (uint32_t)key); } else if (CMD_KEY_INTERNAL == key_type) { key_id_array[0] = key_id; key_id_array[1] = 0; set_big_endian_4byte((uint8_t *)cmd_encrypt->key_ptr, (uint32_t)0); } else { return CMD_RETURN_FAIL; } set_big_endian_2byte((uint8_t *)cmd_encrypt->key_id0, key_id_array[0]); set_big_endian_2byte((uint8_t *)cmd_encrypt->key_id1, key_id_array[1]); set_big_endian_4byte((uint8_t *)cmd_encrypt->cipher_ptr, (uint32_t)cipher); get_otp_key_aut_mac(key_id_array, 2, (uint8_t *)cmd_buf, mac_buf); ret = send_cmd_and_wait_response((uint32_t *)cmd_buf); if (SEIP_SUCCESS == ret) { printf("SKE xts encrypt success \n"); } else { print_buf_U8((uint8_t *)cipher, bytelen, "cipher"); printf("SKE xts encrypt failure, mode=%d, ret = 0x%x \n", mode, ret); return CMD_RETURN_FAIL; } return CMD_RETURN_SUCCESS; } /** * @brief get device info * * This function get ehsm device info. * * @param[in] mode ske mode * @param[out] replain replain buff * @param[in] key_type enc key type * @param[in] key enc key buff * @param[in] key_id enc key id * @param[in] iv iv buff * @param[in] cipher out buff * @param[in] cipherbytelen cipher bytelen * @param[in] mac_buf mac buff * @return CMD_RETURN_SUCCESS or error code. */ sdrv_crypto_error_status_e cmd_ske_xts_dec(uint8_t mode, uint8_t *replain, cmd_key_type_e key_type, uint8_t *key, uint16_t key_id, uint8_t *iv, uint8_t *cipher, uint32_t cipherbytelen, uint8_t *mac_buf) { uint16_t key_id_array[2]; uint32_t cmd_buf[8] = {0}; uint32_t ret; cmd_ske_decrypt_t *cmd_decrypt = NULL; cmd_decrypt = (cmd_ske_decrypt_t *)cmd_buf; cmd_decrypt->cmd_id = SKE_DECRYPT; cmd_decrypt->mode = mode; set_big_endian_4byte((uint8_t *)cmd_decrypt->iv_ptr, (uint32_t)iv); set_big_endian_4byte((uint8_t *)cmd_decrypt->data_ptr, (uint32_t)replain); set_big_endian_4byte((uint8_t *)cmd_decrypt->aut_info_ptr, (uint32_t)mac_buf); if (CMD_KEY_EXTERNAL_PLAINTEXT == key_type) { key_id_array[0] = 0; key_id_array[1] = 0; set_big_endian_4byte((uint8_t *)cmd_decrypt->key_ptr, (uint32_t)key); } else if (CMD_KEY_EXTERNAL_CIPHERTEXT == key_type) { key_id_array[0] = 0; key_id_array[1] = key_id; set_big_endian_4byte((uint8_t *)cmd_decrypt->key_ptr, (uint32_t)key); } else if (CMD_KEY_INTERNAL == key_type) { key_id_array[0] = key_id; key_id_array[1] = 0; set_big_endian_4byte((uint8_t *)cmd_decrypt->key_ptr, (uint32_t)0); } else { return CMD_RETURN_FAIL; } set_big_endian_2byte((uint8_t *)cmd_decrypt->key_id0, key_id_array[0]); set_big_endian_2byte((uint8_t *)cmd_decrypt->key_id1, key_id_array[1]); set_big_endian_4byte((uint8_t *)cmd_decrypt->cipher_ptr, (uint32_t)cipher); set_big_endian_4byte((uint8_t *)cmd_decrypt->cipher_len, (uint32_t)cipherbytelen); get_otp_key_aut_mac(key_id_array, 2, (uint8_t *)cmd_buf, mac_buf); ret = send_cmd_and_wait_response((uint32_t *)cmd_buf); if (SEIP_SUCCESS == ret) { printf("SKE xts encrypt success \n"); } else { print_buf_U8((uint8_t *)cipher, cipherbytelen, "cipher"); printf("SKE xts encrypt failure, mode=%d, ret=0x%x \n", mode, ret); return CMD_RETURN_FAIL; } return CMD_RETURN_SUCCESS; }