exo2: implement the rest of cpu suspend (security checks TODO)

2025-05-19 17:35:06 -04:00 · 2020-06-08 00:41:27 -07:00 · 2020-06-08 00:41:27 -07:00 · 2fb363dcf0
commit 2fb363dcf0
parent 34098f7215
12 changed files with 384 additions and 8 deletions
--- a/libraries/libexosphere/source/se/se_aes.cpp
+++ b/libraries/libexosphere/source/se/se_aes.cpp
@ -277,6 +277,37 @@ namespace ams::se {
            GetCmacResult(SE, dst, dst_size);
        }

+        void EncryptAesCbc(void *dst, size_t dst_size, int slot, const void *src, size_t src_size, const void *iv, size_t iv_size, AesMode mode) {
+            /* If nothing to encrypt, succeed. */
+            if (src_size == 0) { return; }
+
+            /* Validate input. */
+            AMS_ABORT_UNLESS(iv_size == AesBlockSize);
+            AMS_ABORT_UNLESS(0 <= slot && slot < AesKeySlotCount);
+
+            /* Get the engine. */
+            auto *SE = GetRegisters();
+
+            /* Determine extents. */
+            const size_t num_blocks   = src_size / AesBlockSize;
+            const size_t aligned_size = num_blocks * AesBlockSize;
+            AMS_ABORT_UNLESS(src_size == aligned_size);
+
+            /* Configure for aes-cbc encryption. */
+            SetConfig(SE, true, SE_CONFIG_DST_MEMORY);
+            SetAesConfig(SE, slot, true, AesConfigCbcEncrypt);
+            UpdateAesMode(SE, mode);
+
+            /* Set the iv. */
+            SetAesKeyIv(SE, slot, iv, iv_size);
+
+            /* Set the block count. */
+            SetBlockCount(SE, num_blocks);
+
+            /* Execute the operation. */
+            ExecuteOperation(SE, SE_OPERATION_OP_START, dst, dst_size, src, aligned_size);
+        }
+
        void ComputeAes128Async(u32 out_ll_address, int slot, u32 in_ll_address, u32 size, DoneHandler handler, u32 config, bool encrypt, volatile SecurityEngineRegisters *SE) {
            /* If nothing to decrypt, succeed. */
            if (size == 0) { return; }
@ -448,6 +479,14 @@ namespace ams::se {
        return ComputeAesCmac(dst, dst_size, slot, src, src_size, AesMode_Aes256);
    }

+    void EncryptAes128Cbc(void *dst, size_t dst_size, int slot, const void *src, size_t src_size, const void *iv, size_t iv_size) {
+        return EncryptAesCbc(dst, dst_size, slot, src, src_size, iv, iv_size, AesMode_Aes128);
+    }
+
+    void EncryptAes256Cbc(void *dst, size_t dst_size, int slot, const void *src, size_t src_size, const void *iv, size_t iv_size) {
+        return EncryptAesCbc(dst, dst_size, slot, src, src_size, iv, iv_size, AesMode_Aes256);
+    }
+
    void EncryptAes128CbcAsync(u32 out_ll_address, int slot, u32 in_ll_address, u32 size, const void *iv, size_t iv_size, DoneHandler handler) {
        /* Validate the iv. */
        AMS_ABORT_UNLESS(iv_size == AesBlockSize);