From 69891db8e2159be589b0e98cf2f01ccc5118ee4c Mon Sep 17 00:00:00 2001
From: Michael Brown
Date: Mon, 27 Jul 2015 02:48:49 +0100
Subject: [crypto] Add ECB block cipher mode (for debug and self-tests only)

Signed-off-by: Michael Brown <mcb30@ipxe.org>
---
 src/include/ipxe/aes.h |  1 +
 src/include/ipxe/ecb.h | 55 ++++++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 56 insertions(+)
 create mode 100644 src/include/ipxe/ecb.h

(limited to 'src/include/ipxe')

diff --git a/src/include/ipxe/aes.h b/src/include/ipxe/aes.h
index 4e44f9853..91e7483af 100644
--- a/src/include/ipxe/aes.h
+++ b/src/include/ipxe/aes.h
@@ -26,6 +26,7 @@ extern void axtls_aes_encrypt ( const AES_CTX *ctx, uint32_t *data );
 extern void axtls_aes_decrypt ( const AES_CTX *ctx, uint32_t *data );
 
 extern struct cipher_algorithm aes_algorithm;
+extern struct cipher_algorithm aes_ecb_algorithm;
 extern struct cipher_algorithm aes_cbc_algorithm;
 
 int aes_wrap ( const void *kek, const void *src, void *dest, int nblk );
diff --git a/src/include/ipxe/ecb.h b/src/include/ipxe/ecb.h
new file mode 100644
index 000000000..4e6aa3c81
--- /dev/null
+++ b/src/include/ipxe/ecb.h
@@ -0,0 +1,55 @@
+#ifndef _IPXE_ECB_H
+#define _IPXE_ECB_H
+
+/** @file
+ *
+ * Electronic codebook (ECB)
+ *
+ */
+
+FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );
+
+#include <ipxe/crypto.h>
+
+extern void ecb_encrypt ( void *ctx, const void *src, void *dst,
+			  size_t len, struct cipher_algorithm *raw_cipher );
+extern void ecb_decrypt ( void *ctx, const void *src, void *dst,
+			  size_t len, struct cipher_algorithm *raw_cipher );
+
+/**
+ * Create a cipher-block chaining mode of behaviour of an existing cipher
+ *
+ * @v _ecb_name		Name for the new ECB cipher
+ * @v _ecb_cipher	New cipher algorithm
+ * @v _raw_cipher	Underlying cipher algorithm
+ * @v _raw_context	Context structure for the underlying cipher
+ * @v _blocksize	Cipher block size
+ */
+#define ECB_CIPHER( _ecb_name, _ecb_cipher, _raw_cipher, _raw_context,	\
+		    _blocksize )					\
+static int _ecb_name ## _setkey ( void *ctx, const void *key,		\
+				  size_t keylen ) {			\
+	return cipher_setkey ( &_raw_cipher, ctx, key, keylen );	\
+}									\
+static void _ecb_name ## _setiv ( void *ctx, const void *iv ) {		\
+	cipher_setiv ( &_raw_cipher, ctx, iv );				\
+}									\
+static void _ecb_name ## _encrypt ( void *ctx, const void *src,		\
+				    void *dst, size_t len ) {		\
+	ecb_encrypt ( ctx, src, dst, len, &_raw_cipher );		\
+}									\
+static void _ecb_name ## _decrypt ( void *ctx, const void *src,		\
+				    void *dst, size_t len ) {		\
+	ecb_decrypt ( ctx, src, dst, len, &_raw_cipher );		\
+}									\
+struct cipher_algorithm _ecb_cipher = {					\
+	.name		= #_ecb_name,					\
+	.ctxsize	= sizeof ( _raw_context ),			\
+	.blocksize	= _blocksize,					\
+	.setkey		= _ecb_name ## _setkey,				\
+	.setiv		= _ecb_name ## _setiv,				\
+	.encrypt	= _ecb_name ## _encrypt,			\
+	.decrypt	= _ecb_name ## _decrypt,			\
+};
+
+#endif /* _IPXE_ECB_H */
-- 
cgit v1.2.3-55-g7522