Home Explore Help
Register Sign In
RD_Software
/
ark1668ed-bsp
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: fc47107f95
Branches Tags
ark1668ed-bsp
/
linux
/
arch
/
riscv
/
crypto
/
aes-macros.S

aes-macros.S 5.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156 
  1. /* SPDX-License-Identifier: Apache-2.0 OR BSD-2-Clause */
    2. 

  2. //
    3. 

  3. // This file is dual-licensed, meaning that you can use it under your
    4. 

  4. // choice of either of the following two licenses:
    5. 

  5. //
    6. 

  6. // Copyright 2023 The OpenSSL Project Authors. All Rights Reserved.
    7. 

  7. //
    8. 

  8. // Licensed under the Apache License 2.0 (the "License"). You can obtain
    9. 

  9. // a copy in the file LICENSE in the source distribution or at
    10. 

  10. // https://www.openssl.org/source/license.html
    11. 

  11. //
    12. 

  12. // or
    13. 

  13. //
    14. 

  14. // Copyright (c) 2023, Christoph Müllner <christoph.muellner@vrull.eu>
    15. 

  15. // Copyright (c) 2023, Phoebe Chen <phoebe.chen@sifive.com>
    16. 

  16. // Copyright (c) 2023, Jerry Shih <jerry.shih@sifive.com>
    17. 

  17. // Copyright 2024 Google LLC
    18. 

  18. // All rights reserved.
    19. 

  19. //
    20. 

  20. // Redistribution and use in source and binary forms, with or without
    21. 

  21. // modification, are permitted provided that the following conditions
    22. 

  22. // are met:
    23. 

  23. // 1. Redistributions of source code must retain the above copyright
    24. 

  24. //    notice, this list of conditions and the following disclaimer.
    25. 

  25. // 2. Redistributions in binary form must reproduce the above copyright
    26. 

  26. //    notice, this list of conditions and the following disclaimer in the
    27. 

  27. //    documentation and/or other materials provided with the distribution.
    28. 

  28. //
    29. 

  29. // THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
    30. 

  30. // "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
    31. 

  31. // LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
    32. 

  32. // A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
    33. 

  33. // OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
    34. 

  34. // SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
    35. 

  35. // LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
    36. 

  36. // DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
    37. 

  37. // THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
    38. 

  38. // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
    39. 

  39. // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
    40. 

  40. 

  41. // This file contains macros that are shared by the other aes-*.S files.  The
    42. 

  42. // generated code of these macros depends on the following RISC-V extensions:
    43. 

  43. // - RV64I
    44. 

  44. // - RISC-V Vector ('V') with VLEN >= 128
    45. 

  45. // - RISC-V Vector AES block cipher extension ('Zvkned')
    46. 

  46. 

  47. // Loads the AES round keys from \keyp into vector registers and jumps to code
    48. 

  48. // specific to the length of the key.  Specifically:
    49. 

  49. //   - If AES-128, loads round keys into v1-v11 and jumps to \label128.
    50. 

  50. //   - If AES-192, loads round keys into v1-v13 and jumps to \label192.
    51. 

  51. //   - If AES-256, loads round keys into v1-v15 and continues onwards.
    52. 

  52. //
    53. 

  53. // Also sets vl=4 and vtype=e32,m1,ta,ma.  Clobbers t0 and t1.
    54. 

  54. .macro	aes_begin	keyp, label128, label192
    55. 

  55. 	lwu		t0, 480(\keyp)	// t0 = key length in bytes
    56. 

  56. 	li		t1, 24		// t1 = key length for AES-192
    57. 

  57. 	vsetivli	zero, 4, e32, m1, ta, ma
    58. 

  58. 	vle32.v		v1, (\keyp)
    59. 

  59. 	addi		\keyp, \keyp, 16
    60. 

  60. 	vle32.v		v2, (\keyp)
    61. 

  61. 	addi		\keyp, \keyp, 16
    62. 

  62. 	vle32.v		v3, (\keyp)
    63. 

  63. 	addi		\keyp, \keyp, 16
    64. 

  64. 	vle32.v		v4, (\keyp)
    65. 

  65. 	addi		\keyp, \keyp, 16
    66. 

  66. 	vle32.v		v5, (\keyp)
    67. 

  67. 	addi		\keyp, \keyp, 16
    68. 

  68. 	vle32.v		v6, (\keyp)
    69. 

  69. 	addi		\keyp, \keyp, 16
    70. 

  70. 	vle32.v		v7, (\keyp)
    71. 

  71. 	addi		\keyp, \keyp, 16
    72. 

  72. 	vle32.v		v8, (\keyp)
    73. 

  73. 	addi		\keyp, \keyp, 16
    74. 

  74. 	vle32.v		v9, (\keyp)
    75. 

  75. 	addi		\keyp, \keyp, 16
    76. 

  76. 	vle32.v		v10, (\keyp)
    77. 

  77. 	addi		\keyp, \keyp, 16
    78. 

  78. 	vle32.v		v11, (\keyp)
    79. 

  79. 	blt		t0, t1, \label128	// If AES-128, goto label128.
    80. 

  80. 	addi		\keyp, \keyp, 16
    81. 

  81. 	vle32.v		v12, (\keyp)
    82. 

  82. 	addi		\keyp, \keyp, 16
    83. 

  83. 	vle32.v		v13, (\keyp)
    84. 

  84. 	beq		t0, t1, \label192	// If AES-192, goto label192.
    85. 

  85. 	// Else, it's AES-256.
    86. 

  86. 	addi		\keyp, \keyp, 16
    87. 

  87. 	vle32.v		v14, (\keyp)
    88. 

  88. 	addi		\keyp, \keyp, 16
    89. 

  89. 	vle32.v		v15, (\keyp)
    90. 

  90. .endm
    91. 

  91. 

  92. // Encrypts \data using zvkned instructions, using the round keys loaded into
    93. 

  93. // v1-v11 (for AES-128), v1-v13 (for AES-192), or v1-v15 (for AES-256).  \keylen
    94. 

  94. // is the AES key length in bits.  vl and vtype must already be set
    95. 

  95. // appropriately.  Note that if vl > 4, multiple blocks are encrypted.
    96. 

  96. .macro	aes_encrypt	data, keylen
    97. 

  97. 	vaesz.vs	\data, v1
    98. 

  98. 	vaesem.vs	\data, v2
    99. 

  99. 	vaesem.vs	\data, v3
    100. 

  100. 	vaesem.vs	\data, v4
    101. 

  101. 	vaesem.vs	\data, v5
    102. 

  102. 	vaesem.vs	\data, v6
    103. 

  103. 	vaesem.vs	\data, v7
    104. 

  104. 	vaesem.vs	\data, v8
    105. 

  105. 	vaesem.vs	\data, v9
    106. 

  106. 	vaesem.vs	\data, v10
    107. 

  107. .if \keylen == 128
    108. 

  108. 	vaesef.vs	\data, v11
    109. 

  109. .elseif \keylen == 192
    110. 

  110. 	vaesem.vs	\data, v11
    111. 

  111. 	vaesem.vs	\data, v12
    112. 

  112. 	vaesef.vs	\data, v13
    113. 

  113. .else
    114. 

  114. 	vaesem.vs	\data, v11
    115. 

  115. 	vaesem.vs	\data, v12
    116. 

  116. 	vaesem.vs	\data, v13
    117. 

  117. 	vaesem.vs	\data, v14
    118. 

  118. 	vaesef.vs	\data, v15
    119. 

  119. .endif
    120. 

  120. .endm
    121. 

  121. 

  122. // Same as aes_encrypt, but decrypts instead of encrypts.
    123. 

  123. .macro	aes_decrypt	data, keylen
    124. 

  124. .if \keylen == 128
    125. 

  125. 	vaesz.vs	\data, v11
    126. 

  126. .elseif \keylen == 192
    127. 

  127. 	vaesz.vs	\data, v13
    128. 

  128. 	vaesdm.vs	\data, v12
    129. 

  129. 	vaesdm.vs	\data, v11
    130. 

  130. .else
    131. 

  131. 	vaesz.vs	\data, v15
    132. 

  132. 	vaesdm.vs	\data, v14
    133. 

  133. 	vaesdm.vs	\data, v13
    134. 

  134. 	vaesdm.vs	\data, v12
    135. 

  135. 	vaesdm.vs	\data, v11
    136. 

  136. .endif
    137. 

  137. 	vaesdm.vs	\data, v10
    138. 

  138. 	vaesdm.vs	\data, v9
    139. 

  139. 	vaesdm.vs	\data, v8
    140. 

  140. 	vaesdm.vs	\data, v7
    141. 

  141. 	vaesdm.vs	\data, v6
    142. 

  142. 	vaesdm.vs	\data, v5
    143. 

  143. 	vaesdm.vs	\data, v4
    144. 

  144. 	vaesdm.vs	\data, v3
    145. 

  145. 	vaesdm.vs	\data, v2
    146. 

  146. 	vaesdf.vs	\data, v1
    147. 

  147. .endm
    148. 

  148. 

  149. // Expands to aes_encrypt or aes_decrypt according to \enc, which is 1 or 0.
    150. 

  150. .macro	aes_crypt	data, enc, keylen
    151. 

  151. .if \enc
    152. 

  152. 	aes_encrypt	\data, \keylen
    153. 

  153. .else
    154. 

  154. 	aes_decrypt	\data, \keylen
    155. 

  155. .endif
    156. 

  156. .endm
    157.