48
edits
Changes
Jump to navigation
Jump to search
Line 14:
Line 14: − + Line 172:
Line 172: − + − + Line 232:
Line 232: − When writing to the AES_CTR, AES_MAC or AES_KEY0/1/2/3 register, the hardware will process the written data according to the current input endianness specified in AES_CNT. However, the current specified input word order will not be honored for this register, and always defaults to reversed word order. Therefore, for normal word order, the reversal must be carried out manually if required.+ + + + + + + + + + + + + + + + Line 560:
Line 575: − + − | Bootrom. +
no edit summary
|-
|-
| style="background: green" | Yes
| style="background: green" | Yes
| [[#AES_MACBLKCNT|AES_MACBLKCNT]]
| [[#AES_MACEXTRABLKCNT|AES_MACBLKCNT]]
| 0x10009004
| 0x10009004
| 2
| 2
Changing the input word order triggers the key/keyX/keyY FIFOs to be flushed.
Changing the input word order triggers the key/keyX/keyY FIFOs to be flushed.
== AES_MACBLKCNT ==
== AES_MACEXTRABLKCNT ==
(CCM-MAC length)>>4, i.e. the size of the CCM-MAC to work with, in blocks
(CCM-MAC extra data length)>>4, i.e. the number of block of CCM-MAC extra data.
== AES_BLKCNT ==
== AES_BLKCNT ==
== Endianness and word order ==
== Endianness and word order ==
=== AES_CNT.input_endianness ===
Swaps the bytes of 32-bit writes to AES_CTR, AES_WRFIFO, AES_KEY*FIFO according to specified endianness. AES_MAC?
=== AES_CNT.output_endianness ===
Swaps the bytes of 32-bit reads from AES_RDFIFO.
=== AES_CNT.input_word_order ===
If reversed, writes to AES_KEY*FIFO and AES_WRFIFO fill the FIFO backwards. For AES_WRFIFO, this means that every 16-byte block will have its words in the reverse order, but the order of these blocks remains the same. AES_CTR is unaffected by this field. AES_MAC?
=== AES_CNT.output_word_order ===
If reversed, reads from AES_RDFIFO will drain the FIFO backwards. This means that every 16-byte output block will have its words in the reverse order, but the order of these blocks remains the same.
== CCM mode pitfall ==
== CCM mode pitfall ==
| Movable.sed key.
| Movable.sed key.
This is the keyslot used for movable.sed encryption + AES-CBC MAC with the import/export [[FSPXI:ImportIntegrityVerificationSeed|commands]].
This is the keyslot used for movable.sed encryption + AES-CBC MAC with the import/export [[FSPXI:ImportIntegrityVerificationSeed|commands]]. The keyYs used for crypto/CMAC are different, but both can be found in process9 rodata.
| Bootrom.
| Bootrom.
| NATIVE_FIRM.
| -
| -
| Yes
| Yes