Головна сторінка Огляд Довідка
Реєстрація Увійти
dingyu
/
CooCenter-System-kernel
1
0
Відгалуження 0
Файли Проблеми 0 Запити на злиття 0 Wiki
Дерево: e68e7644fa
Гілки Теги
CooCenter-Sy...
/
arch
/
powerpc
/
crypto
/
aes-spe-keys.S

aes-spe-keys.S 6.2 KB
Історія Запис

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283 
  1. /*
    2. 

  2.  * Key handling functions for PPC AES implementation
    3. 

  3.  *
    4. 

  4.  * Copyright (c) 2015 Markus Stockhausen <stockhausen@collogia.de>
    5. 

  5.  *
    6. 

  6.  * This program is free software; you can redistribute it and/or modify it
    7. 

  7.  * under the terms of the GNU General Public License as published by the Free
    8. 

  8.  * Software Foundation; either version 2 of the License, or (at your option)
    9. 

  9.  * any later version.
    10. 

  10.  *
    11. 

  11.  */
    12. 

  12. 

  13. #include <asm/ppc_asm.h>
    14. 

  14. 

  15. #ifdef __BIG_ENDIAN__
    16. 

  16. #define LOAD_KEY(d, s, off) \
    17. 

  17. 	lwz		d,off(s);
    18. 

  18. #else
    19. 

  19. #define LOAD_KEY(d, s, off) \
    20. 

  20. 	li		r0,off; \
    21. 

  21. 	lwbrx		d,s,r0;
    22. 

  22. #endif
    23. 

  23. 

  24. #define INITIALIZE_KEY \
    25. 

  25. 	stwu		r1,-32(r1);	/* create stack frame		*/ \
    26. 

  26. 	stw		r14,8(r1);	/* save registers		*/ \
    27. 

  27. 	stw		r15,12(r1);					   \
    28. 

  28. 	stw		r16,16(r1);
    29. 

  29. 

  30. #define FINALIZE_KEY \
    31. 

  31. 	lwz		r14,8(r1);	/* restore registers		*/ \
    32. 

  32. 	lwz		r15,12(r1);					   \
    33. 

  33. 	lwz		r16,16(r1);					   \
    34. 

  34. 	xor		r5,r5,r5;	/* clear sensitive data		*/ \
    35. 

  35. 	xor		r6,r6,r6;					   \
    36. 

  36. 	xor		r7,r7,r7;					   \
    37. 

  37. 	xor		r8,r8,r8;					   \
    38. 

  38. 	xor		r9,r9,r9;					   \
    39. 

  39. 	xor		r10,r10,r10;					   \
    40. 

  40. 	xor		r11,r11,r11;					   \
    41. 

  41. 	xor		r12,r12,r12;					   \
    42. 

  42. 	addi		r1,r1,32;	/* cleanup stack		*/
    43. 

  43. 

  44. #define LS_BOX(r, t1, t2) \
    45. 

  45. 	lis		t2,PPC_AES_4K_ENCTAB@h;				   \
    46. 

  46. 	ori		t2,t2,PPC_AES_4K_ENCTAB@l;			   \
    47. 

  47. 	rlwimi		t2,r,4,20,27;					   \
    48. 

  48. 	lbz		t1,8(t2);					   \
    49. 

  49. 	rlwimi		r,t1,0,24,31;					   \
    50. 

  50. 	rlwimi		t2,r,28,20,27;					   \
    51. 

  51. 	lbz		t1,8(t2);					   \
    52. 

  52. 	rlwimi		r,t1,8,16,23;					   \
    53. 

  53. 	rlwimi		t2,r,20,20,27;					   \
    54. 

  54. 	lbz		t1,8(t2);					   \
    55. 

  55. 	rlwimi		r,t1,16,8,15;					   \
    56. 

  56. 	rlwimi		t2,r,12,20,27;					   \
    57. 

  57. 	lbz		t1,8(t2);					   \
    58. 

  58. 	rlwimi		r,t1,24,0,7;
    59. 

  59. 

  60. #define GF8_MUL(out, in, t1, t2) \
    61. 

  61. 	lis t1,0x8080;			/* multiplication in GF8	*/ \
    62. 

  62. 	ori t1,t1,0x8080; 						   \
    63. 

  63. 	and t1,t1,in; 							   \
    64. 

  64. 	srwi t1,t1,7; 							   \
    65. 

  65. 	mulli t1,t1,0x1b; 						   \
    66. 

  66. 	lis t2,0x7f7f; 							   \
    67. 

  67. 	ori t2,t2,0x7f7f; 						   \
    68. 

  68. 	and t2,t2,in; 							   \
    69. 

  69. 	slwi t2,t2,1; 							   \
    70. 

  70. 	xor out,t1,t2;
    71. 

  71. 

  72. /*
    73. 

  73.  * ppc_expand_key_128(u32 *key_enc, const u8 *key)
    74. 

  74.  *
    75. 

  75.  * Expand 128 bit key into 176 bytes encryption key. It consists of
    76. 

  76.  * key itself plus 10 rounds with 16 bytes each
    77. 

  77.  *
    78. 

  78.  */
    79. 

  79. _GLOBAL(ppc_expand_key_128)
    80. 

  80. 	INITIALIZE_KEY
    81. 

  81. 	LOAD_KEY(r5,r4,0)
    82. 

  82. 	LOAD_KEY(r6,r4,4)
    83. 

  83. 	LOAD_KEY(r7,r4,8)
    84. 

  84. 	LOAD_KEY(r8,r4,12)
    85. 

  85. 	stw		r5,0(r3)	/* key[0..3] = input data	*/
    86. 

  86. 	stw		r6,4(r3)
    87. 

  87. 	stw		r7,8(r3)
    88. 

  88. 	stw		r8,12(r3)
    89. 

  89. 	li		r16,10		/* 10 expansion rounds		*/
    90. 

  90. 	lis		r0,0x0100	/* RCO(1)			*/
    91. 

  91. ppc_expand_128_loop:
    92. 

  92. 	addi		r3,r3,16
    93. 

  93. 	mr		r14,r8		/* apply LS_BOX to 4th temp	*/
    94. 

  94. 	rotlwi		r14,r14,8
    95. 

  95. 	LS_BOX(r14, r15, r4)
    96. 

  96. 	xor		r14,r14,r0
    97. 

  97. 	xor		r5,r5,r14	/* xor next 4 keys		*/
    98. 

  98. 	xor		r6,r6,r5
    99. 

  99. 	xor		r7,r7,r6
    100. 

  100. 	xor		r8,r8,r7
    101. 

  101. 	stw		r5,0(r3)	/* store next 4 keys		*/
    102. 

  102. 	stw		r6,4(r3)
    103. 

  103. 	stw		r7,8(r3)
    104. 

  104. 	stw		r8,12(r3)
    105. 

  105. 	GF8_MUL(r0, r0, r4, r14)	/* multiply RCO by 2 in GF	*/
    106. 

  106. 	subi		r16,r16,1
    107. 

  107. 	cmpwi		r16,0
    108. 

  108. 	bt		eq,ppc_expand_128_end
    109. 

  109. 	b		ppc_expand_128_loop
    110. 

  110. ppc_expand_128_end:
    111. 

  111. 	FINALIZE_KEY
    112. 

  112. 	blr
    113. 

  113. 

  114. /*
    115. 

  115.  * ppc_expand_key_192(u32 *key_enc, const u8 *key)
    116. 

  116.  *
    117. 

  117.  * Expand 192 bit key into 208 bytes encryption key. It consists of key
    118. 

  118.  * itself plus 12 rounds with 16 bytes each
    119. 

  119.  *
    120. 

  120.  */
    121. 

  121. _GLOBAL(ppc_expand_key_192)
    122. 

  122. 	INITIALIZE_KEY
    123. 

  123. 	LOAD_KEY(r5,r4,0)
    124. 

  124. 	LOAD_KEY(r6,r4,4)
    125. 

  125. 	LOAD_KEY(r7,r4,8)
    126. 

  126. 	LOAD_KEY(r8,r4,12)
    127. 

  127. 	LOAD_KEY(r9,r4,16)
    128. 

  128. 	LOAD_KEY(r10,r4,20)
    129. 

  129. 	stw		r5,0(r3)
    130. 

  130. 	stw		r6,4(r3)
    131. 

  131. 	stw		r7,8(r3)
    132. 

  132. 	stw		r8,12(r3)
    133. 

  133. 	stw		r9,16(r3)
    134. 

  134. 	stw		r10,20(r3)
    135. 

  135. 	li		r16,8		/* 8 expansion rounds		*/
    136. 

  136. 	lis		r0,0x0100	/* RCO(1)			*/
    137. 

  137. ppc_expand_192_loop:
    138. 

  138. 	addi		r3,r3,24
    139. 

  139. 	mr		r14,r10		/* apply LS_BOX to 6th temp	*/
    140. 

  140. 	rotlwi		r14,r14,8
    141. 

  141. 	LS_BOX(r14, r15, r4)
    142. 

  142. 	xor		r14,r14,r0
    143. 

  143. 	xor		r5,r5,r14	/* xor next 6 keys		*/
    144. 

  144. 	xor		r6,r6,r5
    145. 

  145. 	xor		r7,r7,r6
    146. 

  146. 	xor		r8,r8,r7
    147. 

  147. 	xor		r9,r9,r8
    148. 

  148. 	xor		r10,r10,r9
    149. 

  149. 	stw		r5,0(r3)
    150. 

  150. 	stw		r6,4(r3)
    151. 

  151. 	stw		r7,8(r3)
    152. 

  152. 	stw		r8,12(r3)
    153. 

  153. 	subi		r16,r16,1
    154. 

  154. 	cmpwi		r16,0		/* last round early kick out	*/
    155. 

  155. 	bt		eq,ppc_expand_192_end
    156. 

  156. 	stw		r9,16(r3)
    157. 

  157. 	stw		r10,20(r3)
    158. 

  158. 	GF8_MUL(r0, r0, r4, r14)	/* multiply RCO GF8		*/
    159. 

  159. 	b		ppc_expand_192_loop
    160. 

  160. ppc_expand_192_end:
    161. 

  161. 	FINALIZE_KEY
    162. 

  162. 	blr
    163. 

  163. 

  164. /*
    165. 

  165.  * ppc_expand_key_256(u32 *key_enc, const u8 *key)
    166. 

  166.  *
    167. 

  167.  * Expand 256 bit key into 240 bytes encryption key. It consists of key
    168. 

  168.  * itself plus 14 rounds with 16 bytes each
    169. 

  169.  *
    170. 

  170.  */
    171. 

  171. _GLOBAL(ppc_expand_key_256)
    172. 

  172. 	INITIALIZE_KEY
    173. 

  173. 	LOAD_KEY(r5,r4,0)
    174. 

  174. 	LOAD_KEY(r6,r4,4)
    175. 

  175. 	LOAD_KEY(r7,r4,8)
    176. 

  176. 	LOAD_KEY(r8,r4,12)
    177. 

  177. 	LOAD_KEY(r9,r4,16)
    178. 

  178. 	LOAD_KEY(r10,r4,20)
    179. 

  179. 	LOAD_KEY(r11,r4,24)
    180. 

  180. 	LOAD_KEY(r12,r4,28)
    181. 

  181. 	stw		r5,0(r3)
    182. 

  182. 	stw		r6,4(r3)
    183. 

  183. 	stw		r7,8(r3)
    184. 

  184. 	stw		r8,12(r3)
    185. 

  185. 	stw		r9,16(r3)
    186. 

  186. 	stw		r10,20(r3)
    187. 

  187. 	stw		r11,24(r3)
    188. 

  188. 	stw		r12,28(r3)
    189. 

  189. 	li		r16,7		/* 7 expansion rounds		*/
    190. 

  190. 	lis		r0,0x0100	/* RCO(1)			*/
    191. 

  191. ppc_expand_256_loop:
    192. 

  192. 	addi		r3,r3,32
    193. 

  193. 	mr		r14,r12		/* apply LS_BOX to 8th temp	*/
    194. 

  194. 	rotlwi		r14,r14,8
    195. 

  195. 	LS_BOX(r14, r15, r4)
    196. 

  196. 	xor		r14,r14,r0
    197. 

  197. 	xor		r5,r5,r14	/* xor 4 keys			*/
    198. 

  198. 	xor		r6,r6,r5
    199. 

  199. 	xor		r7,r7,r6
    200. 

  200. 	xor		r8,r8,r7
    201. 

  201. 	mr		r14,r8
    202. 

  202. 	LS_BOX(r14, r15, r4)		/* apply LS_BOX to 4th temp	*/
    203. 

  203. 	xor		r9,r9,r14	/* xor 4 keys			*/
    204. 

  204. 	xor		r10,r10,r9
    205. 

  205. 	xor		r11,r11,r10
    206. 

  206. 	xor		r12,r12,r11
    207. 

  207. 	stw		r5,0(r3)
    208. 

  208. 	stw		r6,4(r3)
    209. 

  209. 	stw		r7,8(r3)
    210. 

  210. 	stw		r8,12(r3)
    211. 

  211. 	subi		r16,r16,1
    212. 

  212. 	cmpwi		r16,0		/* last round early kick out	*/
    213. 

  213. 	bt		eq,ppc_expand_256_end
    214. 

  214. 	stw		r9,16(r3)
    215. 

  215. 	stw		r10,20(r3)
    216. 

  216. 	stw		r11,24(r3)
    217. 

  217. 	stw		r12,28(r3)
    218. 

  218. 	GF8_MUL(r0, r0, r4, r14)
    219. 

  219. 	b		ppc_expand_256_loop
    220. 

  220. ppc_expand_256_end:
    221. 

  221. 	FINALIZE_KEY
    222. 

  222. 	blr
    223. 

  223. 

  224. /*
    225. 

  225.  * ppc_generate_decrypt_key: derive decryption key from encryption key
    226. 

  226.  * number of bytes to handle are calculated from length of key (16/24/32)
    227. 

  227.  *
    228. 

  228.  */
    229. 

  229. _GLOBAL(ppc_generate_decrypt_key)
    230. 

  230. 	addi		r6,r5,24
    231. 

  231. 	slwi		r6,r6,2
    232. 

  232. 	lwzx		r7,r4,r6	/* first/last 4 words are same	*/
    233. 

  233. 	stw		r7,0(r3)
    234. 

  234. 	lwz		r7,0(r4)
    235. 

  235. 	stwx		r7,r3,r6
    236. 

  236. 	addi		r6,r6,4
    237. 

  237. 	lwzx		r7,r4,r6
    238. 

  238. 	stw		r7,4(r3)
    239. 

  239. 	lwz		r7,4(r4)
    240. 

  240. 	stwx		r7,r3,r6
    241. 

  241. 	addi		r6,r6,4
    242. 

  242. 	lwzx		r7,r4,r6
    243. 

  243. 	stw		r7,8(r3)
    244. 

  244. 	lwz		r7,8(r4)
    245. 

  245. 	stwx		r7,r3,r6
    246. 

  246. 	addi		r6,r6,4
    247. 

  247. 	lwzx		r7,r4,r6
    248. 

  248. 	stw		r7,12(r3)
    249. 

  249. 	lwz		r7,12(r4)
    250. 

  250. 	stwx		r7,r3,r6
    251. 

  251. 	addi		r3,r3,16
    252. 

  252. 	add		r4,r4,r6
    253. 

  253. 	subi		r4,r4,28
    254. 

  254. 	addi		r5,r5,20
    255. 

  255. 	srwi		r5,r5,2
    256. 

  256. ppc_generate_decrypt_block:
    257. 

  257. 	li	r6,4
    258. 

  258. 	mtctr	r6
    259. 

  259. ppc_generate_decrypt_word:
    260. 

  260. 	lwz		r6,0(r4)
    261. 

  261. 	GF8_MUL(r7, r6, r0, r7)
    262. 

  262. 	GF8_MUL(r8, r7, r0, r8)
    263. 

  263. 	GF8_MUL(r9, r8, r0, r9)
    264. 

  264. 	xor		r10,r9,r6
    265. 

  265. 	xor		r11,r7,r8
    266. 

  266. 	xor		r11,r11,r9
    267. 

  267. 	xor		r12,r7,r10
    268. 

  268. 	rotrwi		r12,r12,24
    269. 

  269. 	xor		r11,r11,r12
    270. 

  270. 	xor		r12,r8,r10
    271. 

  271. 	rotrwi		r12,r12,16
    272. 

  272. 	xor		r11,r11,r12
    273. 

  273. 	rotrwi		r12,r10,8
    274. 

  274. 	xor		r11,r11,r12
    275. 

  275. 	stw		r11,0(r3)
    276. 

  276. 	addi		r3,r3,4
    277. 

  277. 	addi		r4,r4,4
    278. 

  278. 	bdnz		ppc_generate_decrypt_word
    279. 

  279. 	subi		r4,r4,32
    280. 

  280. 	subi		r5,r5,1
    281. 

  281. 	cmpwi		r5,0
    282. 

  282. 	bt		gt,ppc_generate_decrypt_block
    283. 

  283. 	blr
    284.