From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mga06.intel.com (mga06.intel.com [134.134.136.31])
 by mx.groups.io with SMTP id smtpd.web11.68027.1661762578443490177
 for <devel@edk2.groups.io>;
 Mon, 29 Aug 2022 01:43:00 -0700
Authentication-Results: mx.groups.io;
 dkim=fail reason="unable to parse pub key" header.i=@intel.com header.s=intel header.b=f5hIT849;
 spf=pass (domain: intel.com, ip: 134.134.136.31, mailfrom: qi1.zhang@intel.com)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1661762580; x=1693298580;
  h=from:to:cc:subject:date:message-id:in-reply-to:
   references:mime-version:content-transfer-encoding;
  bh=U5nvysbTAQLlNOJ850ub+AYGM9orZz8S5Zm2Ina7LhE=;
  b=f5hIT849NoU3nIu4yqw+GocKx3qbzu9PTsNPTGpCOwmNTuY+ND0luBkt
   TNZjc1TT8viUX3bspRXEtYZw3KUC8umVc/0SUsFcfDPsjp89EnW6bcEKr
   sI34Bhvh2CN7LmK8XylG5q28zNoT2GhlmjzUhIwS8+2BOoITLmbyLoQOX
   wRaGNuWv43auPQ3SeHLVynBKV+vHz9lE0lR8Nw1tboZ3Ly+83H019Xe0/
   mfFM5tUPUIg8ag4WMdR8v8q/wq6iRhAkVhHzLLkwBcjmVzKCFUP+Sl5Cy
   8fVkscvVKarEKhlVFR7uFUnwq1+PcaeugPCsVu0X83ze60quYn2outUha
   A==;
X-IronPort-AV: E=McAfee;i="6500,9779,10453"; a="356559959"
X-IronPort-AV: E=Sophos;i="5.93,272,1654585200"; 
   d="scan'208";a="356559959"
Received: from orsmga006.jf.intel.com ([10.7.209.51])
  by orsmga104.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 29 Aug 2022 01:43:00 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.93,272,1654585200"; 
   d="scan'208";a="588089209"
Received: from shwdesssddpdqi.ccr.corp.intel.com ([10.239.157.129])
  by orsmga006.jf.intel.com with ESMTP; 29 Aug 2022 01:42:58 -0700
From: "Qi Zhang" <qi1.zhang@intel.com>
To: devel@edk2.groups.io
Cc: Qi Zhang <qi1.zhang@intel.com>,
	Jiewen Yao <jiewen.yao@intel.com>,
	Jian J Wang <jian.j.wang@intel.com>,
	Xiaoyu Lu <xiaoyu1.lu@intel.com>,
	Guomin Jiang <guomin.jiang@intel.com>
Subject: [PATCH 1/4] CryptoPkg: add AeadAesGcm function() definition.
Date: Mon, 29 Aug 2022 16:42:51 +0800
Message-Id: <20220829084254.8624-2-qi1.zhang@intel.com>
X-Mailer: git-send-email 2.26.2.windows.1
In-Reply-To: <20220829084254.8624-1-qi1.zhang@intel.com>
References: <20220829084254.8624-1-qi1.zhang@intel.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D4036

Signed-off-by: Qi Zhang <qi1.zhang@intel.com>
Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Xiaoyu Lu <xiaoyu1.lu@intel.com>
Cc: Guomin Jiang <guomin.jiang@intel.com>
---
 CryptoPkg/Include/Library/BaseCryptLib.h | 87 ++++++++++++++++++++++++
 1 file changed, 87 insertions(+)

diff --git a/CryptoPkg/Include/Library/BaseCryptLib.h b/CryptoPkg/Include/L=
ibrary/BaseCryptLib.h
index 7d1499350a..b27ec28944 100644
--- a/CryptoPkg/Include/Library/BaseCryptLib.h
+++ b/CryptoPkg/Include/Library/BaseCryptLib.h
@@ -1172,6 +1172,93 @@ AesCbcDecrypt (
   OUT  UINT8        *Output=0D
   );=0D
 =0D
+// =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
+//    Authenticated Encryption with Associated Data (AEAD) Cryptography Pr=
imitive=0D
+// =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
+=0D
+/**=0D
+  Performs AEAD AES-GCM authenticated encryption on a data buffer and addi=
tional authenticated data (AAD).=0D
+=0D
+  IvSize must be 12, otherwise FALSE is returned.=0D
+  KeySize must be 16, 24 or 32, otherwise FALSE is returned.=0D
+  TagSize must be 12, 13, 14, 15, 16, otherwise FALSE is returned.=0D
+=0D
+  @param[in]   Key         Pointer to the encryption key.=0D
+  @param[in]   KeySize     Size of the encryption key in bytes.=0D
+  @param[in]   Iv          Pointer to the IV value.=0D
+  @param[in]   IvSize      Size of the IV value in bytes.=0D
+  @param[in]   AData       Pointer to the additional authenticated data (A=
AD).=0D
+  @param[in]   ADataSize   Size of the additional authenticated data (AAD)=
 in bytes.=0D
+  @param[in]   DataIn      Pointer to the input data buffer to be encrypte=
d.=0D
+  @param[in]   DataInSize  Size of the input data buffer in bytes.=0D
+  @param[out]  TagOut      Pointer to a buffer that receives the authentic=
ation tag output.=0D
+  @param[in]   TagSize     Size of the authentication tag in bytes.=0D
+  @param[out]  DataOut     Pointer to a buffer that receives the encryptio=
n output.=0D
+  @param[out]  DataOutSize Size of the output data buffer in bytes.=0D
+=0D
+  @retval TRUE   AEAD AES-GCM authenticated encryption succeeded.=0D
+  @retval FALSE  AEAD AES-GCM authenticated encryption failed.=0D
+=0D
+**/=0D
+BOOLEAN=0D
+EFIAPI=0D
+AeadAesGcmEncrypt (=0D
+  IN   CONST UINT8  *Key,=0D
+  IN   UINTN        KeySize,=0D
+  IN   CONST UINT8  *Iv,=0D
+  IN   UINTN        IvSize,=0D
+  IN   CONST UINT8  *AData,=0D
+  IN   UINTN        ADataSize,=0D
+  IN   CONST UINT8  *DataIn,=0D
+  IN   UINTN        DataInSize,=0D
+  OUT  UINT8        *TagOut,=0D
+  IN   UINTN        TagSize,=0D
+  OUT  UINT8        *DataOut,=0D
+  OUT  UINTN        *DataOutSize=0D
+  );=0D
+=0D
+/**=0D
+  Performs AEAD AES-GCM authenticated decryption on a data buffer and addi=
tional authenticated data (AAD).=0D
+=0D
+  IvSize must be 12, otherwise FALSE is returned.=0D
+  KeySize must be 16, 24 or 32, otherwise FALSE is returned.=0D
+  TagSize must be 12, 13, 14, 15, 16, otherwise FALSE is returned.=0D
+  If additional authenticated data verification fails, FALSE is returned.=
=0D
+=0D
+  @param[in]   Key         Pointer to the encryption key.=0D
+  @param[in]   KeySize     Size of the encryption key in bytes.=0D
+  @param[in]   Iv          Pointer to the IV value.=0D
+  @param[in]   IvSize      Size of the IV value in bytes.=0D
+  @param[in]   AData       Pointer to the additional authenticated data (A=
AD).=0D
+  @param[in]   ADataSize   Size of the additional authenticated data (AAD)=
 in bytes.=0D
+  @param[in]   DataIn      Pointer to the input data buffer to be decrypte=
d.=0D
+  @param[in]   DataInSize  Size of the input data buffer in bytes.=0D
+  @param[in]   Tag         Pointer to a buffer that contains the authentic=
ation tag.=0D
+  @param[in]   TagSize     Size of the authentication tag in bytes.=0D
+  @param[out]  DataOut     Pointer to a buffer that receives the decryptio=
n output.=0D
+  @param[out]  DataOutSize Size of the output data buffer in bytes.=0D
+=0D
+  @retval TRUE   AEAD AES-GCM authenticated decryption succeeded.=0D
+  @retval FALSE  AEAD AES-GCM authenticated decryption failed.=0D
+=0D
+**/=0D
+BOOLEAN=0D
+EFIAPI=0D
+AeadAesGcmDecrypt (=0D
+  IN   CONST UINT8  *Key,=0D
+  IN   UINTN        KeySize,=0D
+  IN   CONST UINT8  *Iv,=0D
+  IN   UINTN        IvSize,=0D
+  IN   CONST UINT8  *AData,=0D
+  IN   UINTN        ADataSize,=0D
+  IN   CONST UINT8  *DataIn,=0D
+  IN   UINTN        DataInSize,=0D
+  IN   CONST UINT8  *Tag,=0D
+  IN   UINTN        TagSize,=0D
+  OUT  UINT8        *DataOut,=0D
+  OUT  UINTN        *DataOutSize=0D
+  );=0D
+=0D
 // =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
 //    Asymmetric Cryptography Primitive=0D
 // =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
--=20
2.26.2.windows.1