exo2: Implement (untested) SmcDecryptDeviceUniqueData

2025-05-31 23:08:22 -04:00 · 2020-05-17 02:36:48 -07:00 · 2020-05-17 02:36:48 -07:00 · 91e0bbd9d7
commit 91e0bbd9d7
parent 4fe42eb997
14 changed files with 925 additions and 46 deletions
--- a/libraries/libvapours/include/vapours/crypto/impl/crypto_aes_impl.hpp
+++ b/libraries/libvapours/include/vapours/crypto/impl/crypto_aes_impl.hpp
@ -30,16 +30,24 @@ namespace ams::crypto::impl {
            static constexpr s32    RoundCount   = (KeySize / 4) + 6;
            static constexpr size_t RoundKeySize = BlockSize * (RoundCount + 1);
        private:
+        #ifdef ATMOSPHERE_IS_EXOSPHERE
+            int slot;
+        #endif
+        #ifdef ATMOSPHERE_IS_STRATOSPHERE
            u32 round_keys[RoundKeySize / sizeof(u32)];
+        #endif
        public:
            ~AesImpl();

            void Initialize(const void *key, size_t key_size, bool is_encrypt);
            void EncryptBlock(void *dst, size_t dst_size, const void *src, size_t src_size) const;
            void DecryptBlock(void *dst, size_t dst_size, const void *src, size_t src_size) const;
+
+        #ifdef ATMOSPHERE_IS_STRATOSPHERE
            const u8 *GetRoundKey() const {
                return reinterpret_cast<const u8 *>(this->round_keys);
            }
+        #endif
    };

    /* static_assert(HashFunction<Sha1Impl>); */
--- a/libraries/libvapours/include/vapours/crypto/impl/crypto_gcm_mode_impl.hpp
+++ b/libraries/libvapours/include/vapours/crypto/impl/crypto_gcm_mode_impl.hpp
@ -0,0 +1,106 @@
+/*
+ * Copyright (c) 2018-2020 Atmosphère-NX
+ *
+ * This program is free software; you can redistribute it and/or modify it
+ * under the terms and conditions of the GNU General Public License,
+ * version 2, as published by the Free Software Foundation.
+ *
+ * This program is distributed in the hope it will be useful, but WITHOUT
+ * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
+ * FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for
+ * more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+#pragma once
+#include <vapours/common.hpp>
+#include <vapours/assert.hpp>
+#include <vapours/util.hpp>
+#include <vapours/crypto/crypto_memory_clear.hpp>
+#include <vapours/crypto/crypto_aes_encryptor.hpp>
+
+namespace ams::crypto::impl {
+
+    template<typename BlockCipher>
+    class GcmModeImpl {
+        NON_COPYABLE(GcmModeImpl);
+        NON_MOVEABLE(GcmModeImpl);
+        public:
+            static constexpr size_t KeySize   = BlockCipher::KeySize;
+            static constexpr size_t BlockSize = BlockCipher::BlockSize;
+            static constexpr size_t MacSize   = BlockCipher::BlockSize;
+        private:
+            enum State {
+                State_None,
+                State_Initialized,
+                State_ProcessingAad,
+                State_Encrypting,
+                State_Decrypting,
+                State_Done,
+            };
+
+            struct Block128 {
+                u64 hi;
+                u64 lo;
+
+                ALWAYS_INLINE void Clear() {
+                    this->hi = 0;
+                    this->lo = 0;
+                }
+            };
+            static_assert(util::is_pod<Block128>::value);
+            static_assert(sizeof(Block128) == 0x10);
+
+            union Block {
+                Block128 block_128;
+                u32      block_32[4];
+                u8       block_8[16];
+            };
+            static_assert(util::is_pod<Block>::value);
+            static_assert(sizeof(Block) == 0x10);
+
+            using CipherFunction = void (*)(void *dst_block, const void *src_block, const void *ctx);
+        private:
+            State state;
+            const BlockCipher *block_cipher;
+            CipherFunction cipher_func;
+            u8 pad[sizeof(u64)];
+            Block block_x;
+            Block block_y;
+            Block block_ek;
+            Block block_ek0;
+            Block block_tmp;
+            size_t aad_size;
+            size_t msg_size;
+            u32    aad_remaining;
+            u32    msg_remaining;
+            u32    counter;
+            Block  h_mult_blocks[16];
+        public:
+            GcmModeImpl() : state(State_None) { /* ... */ }
+
+            ~GcmModeImpl() {
+                ClearMemory(this, sizeof(*this));
+            }
+
+            void Initialize(const BlockCipher *block_cipher);
+
+            void Reset(const void *iv, size_t iv_size);
+
+            void   UpdateAad(const void *aad, size_t aad_size);
+            size_t UpdateEncrypt(void *dst, size_t dst_size, const void *src, size_t src_size);
+            size_t UpdateDecrypt(void *dst, size_t dst_size, const void *src, size_t src_size);
+
+            void GetMac(void *dst, size_t dst_size);
+        private:
+            static void ProcessBlock(void *dst_block, const void *src_block, const void *ctx) {
+                static_cast<const BlockCipher *>(ctx)->EncryptBlock(dst_block, BlockSize, src_block, BlockSize);
+            }
+
+            void InitializeHashKey();
+            void ComputeMac(bool encrypt);
+    };
+
+}