board/cr50/tpm2/ecies.c


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126

/* Copyright 2016 The Chromium OS Authors. All rights reserved.
 * Use of this source code is governed by a BSD-style license that can be
 * found in the LICENSE file.
 */

#include "dcrypto.h"

#ifdef CRYPTO_TEST_SETUP

#include "extension.h"

enum {
	TEST_ENCRYPT = 0,
	TEST_DECRYPT = 1,
};

#define MAX_OUT_BYTES 256

#define AES_BLOCK_BYTES 16

static void ecies_command_handler(void *cmd_body, size_t cmd_size,
			size_t *response_size)
{
	uint8_t *cmd = cmd_body;
	uint8_t *out = cmd_body;

	uint8_t op;
	uint8_t *in;
	size_t in_len;
	size_t auth_data_len;
	const uint8_t *iv;
	size_t iv_len = AES_BLOCK_BYTES;
	p256_int pub_x;
	size_t pub_x_len;
	p256_int pub_y;
	size_t pub_y_len;
	p256_int *d = &pub_x;
	const uint8_t *salt;
	size_t salt_len;
	const uint8_t *info;
	size_t info_len;

	/* Command format.
	 *
	 *   WIDTH	   FIELD
	 *   1		   OP
	 *   1             MSB IN LEN
	 *   1             LSB IN LEN
	 *   IN_LEN        IN
	 *   1             MSB AUTH_DATA LEN
	 *   1             LSB AUTH_DATA LEN
	 *   16            IV
	 *   1             MSB PUB_X LEN
	 *   1             LSB PUB_X LEN
	 *   PUB_X_LEN     PUB_X
	 *   1             MSB PUB_Y LEN
	 *   1             LSB PUB_Y LEN
	 *   PUB_Y_LEN     PUB_Y
	 *   1             MSB SALT LEN
	 *   1             LSB SALT LEN
	 *   SALT_LEN      SALT
	 *   1             MSB INFO LEN
	 *   1             LSB INFO LEN
	 *   INFO_LEN      INFO
	 */

	op = *cmd++;
	in_len = ((size_t) cmd[0]) << 8 | cmd[1];
	cmd += 2;
	in = cmd;
	cmd += in_len;

	auth_data_len = ((size_t) cmd[0]) << 8 | cmd[1];
	cmd += 2;

	iv = cmd;
	cmd += iv_len;

	pub_x_len = ((size_t) cmd[0]) << 8 | cmd[1];
	cmd += 2;
	p256_from_bin(cmd, &pub_x);
	cmd += pub_x_len;

	pub_y_len = ((size_t) cmd[0]) << 8 | cmd[1];
	cmd += 2;
	if (pub_y_len)
		p256_from_bin(cmd, &pub_y);
	cmd += pub_y_len;

	salt_len = ((size_t) cmd[0]) << 8 | cmd[1];
	cmd += 2;
	salt = cmd;
	cmd += salt_len;

	info_len = ((size_t) cmd[0]) << 8 | cmd[1];
	cmd += 2;
	info = cmd;
	cmd += info_len;

	switch (op) {
	case TEST_ENCRYPT:
		*response_size = DCRYPTO_ecies_encrypt(
			in, MAX_OUT_BYTES, in, in_len,
			auth_data_len, iv,
			&pub_x, &pub_y, salt, salt_len,
			info, info_len);
		break;
	case TEST_DECRYPT:
		*response_size = DCRYPTO_ecies_decrypt(
			in, MAX_OUT_BYTES, in, in_len,
			auth_data_len, iv,
			d, salt, salt_len,
			info, info_len);
		break;
	default:
		*response_size = 0;
	}

	if (*response_size > 0)
		memmove(out, in, *response_size);
}

DECLARE_EXTENSION_COMMAND(EXTENSION_ECIES, ecies_command_handler);

#endif   /* CRYPTO_TEST_SETUP */