From mboxrd@z Thu Jan  1 00:00:00 1970
Received: from mga18.intel.com (mga18.intel.com [134.134.136.126])
 by mx.groups.io with SMTP id smtpd.web08.4792.1663914726099861986
 for <devel@edk2.groups.io>;
 Thu, 22 Sep 2022 23:32:08 -0700
Authentication-Results: mx.groups.io;
 dkim=fail reason="unable to parse pub key" header.i=@intel.com header.s=intel header.b=R8Oxp4+g;
 spf=pass (domain: intel.com, ip: 134.134.136.126, mailfrom: qi1.zhang@intel.com)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple;
  d=intel.com; i=@intel.com; q=dns/txt; s=Intel;
  t=1663914728; x=1695450728;
  h=from:to:cc:subject:date:message-id:in-reply-to:
   references:mime-version:content-transfer-encoding;
  bh=BWSDO9FQWWu+EinSdnwROdIZ4iHwI7tvqRkWDsMP2mA=;
  b=R8Oxp4+gIgoB3txjCFgXa2AKUTjtWwLBJSlFwdb1BV4HfDA/kQ9xu+WP
   cWRRii+Ql1HzvlUqR/Sv/ZDtTggArlbpoMGJCbru/l2wRrvbes60BC1p7
   TCyCUZ37ah/ENUQB/nhCigvWH6pyXuPdHI7J+k8Kt6YRqfXoMuYfzzfj4
   SgqzJvPg82x0aXsZt5X2EYmxP6xkzWd2wC2P4IiRNTJucuxzLGmkiJXa3
   lSniMXnbt5NrC8dqj7+I+x9n6xnbdO/W6vEN/urNG5IeuiDzeqwg4+9nS
   0oQkWxmjOGOmfZBC81BDT0n9NLFmJ8OGWRWtZfteX4nOAYMuvjbOvDPrh
   Q==;
X-IronPort-AV: E=McAfee;i="6500,9779,10478"; a="283619031"
X-IronPort-AV: E=Sophos;i="5.93,337,1654585200"; 
   d="scan'208";a="283619031"
Received: from orsmga003.jf.intel.com ([10.7.209.27])
  by orsmga106.jf.intel.com with ESMTP/TLS/ECDHE-RSA-AES256-GCM-SHA384; 22 Sep 2022 23:32:07 -0700
X-ExtLoop1: 1
X-IronPort-AV: E=Sophos;i="5.93,337,1654585200"; 
   d="scan'208";a="571272291"
Received: from shwdesssddpdqi.ccr.corp.intel.com ([10.239.157.129])
  by orsmga003.jf.intel.com with ESMTP; 22 Sep 2022 23:32:05 -0700
From: "Qi Zhang" <qi1.zhang@intel.com>
To: devel@edk2.groups.io
Cc: Qi Zhang <qi1.zhang@intel.com>,
	Jiewen Yao <jiewen.yao@intel.com>,
	Jian J Wang <jian.j.wang@intel.com>,
	Xiaoyu Lu <xiaoyu1.lu@intel.com>,
	Guomin Jiang <guomin.jiang@intel.com>
Subject: [PATCH V2 1/4] CryptoPkg: add AeadAesGcm function() definition.
Date: Fri, 23 Sep 2022 14:31:58 +0800
Message-Id: <4f3e185cb6ffd8c60e56b91f22eef12f24e593e0.1663914644.git.qi1.zhang@intel.com>
X-Mailer: git-send-email 2.26.2.windows.1
In-Reply-To: <cover.1663914644.git.qi1.zhang@intel.com>
References: <cover.1663914644.git.qi1.zhang@intel.com>
MIME-Version: 1.0
Content-Transfer-Encoding: quoted-printable

REF: https://bugzilla.tianocore.org/show_bug.cgi?id=3D4036

Signed-off-by: Qi Zhang <qi1.zhang@intel.com>
Cc: Jiewen Yao <jiewen.yao@intel.com>
Cc: Jian J Wang <jian.j.wang@intel.com>
Cc: Xiaoyu Lu <xiaoyu1.lu@intel.com>
Cc: Guomin Jiang <guomin.jiang@intel.com>
Reviewed-by: Jiewen Yao <jiewen.yao@intel.com>
---
 CryptoPkg/Include/Library/BaseCryptLib.h | 87 ++++++++++++++++++++++++
 1 file changed, 87 insertions(+)

diff --git a/CryptoPkg/Include/Library/BaseCryptLib.h b/CryptoPkg/Include/L=
ibrary/BaseCryptLib.h
index 2a4302a052..9436fe0f19 100644
--- a/CryptoPkg/Include/Library/BaseCryptLib.h
+++ b/CryptoPkg/Include/Library/BaseCryptLib.h
@@ -1360,6 +1360,93 @@ AesCbcDecrypt (
   OUT  UINT8        *Output=0D
   );=0D
 =0D
+// =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
+//    Authenticated Encryption with Associated Data (AEAD) Cryptography Pr=
imitive=0D
+// =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
+=0D
+/**=0D
+  Performs AEAD AES-GCM authenticated encryption on a data buffer and addi=
tional authenticated data (AAD).=0D
+=0D
+  IvSize must be 12, otherwise FALSE is returned.=0D
+  KeySize must be 16, 24 or 32, otherwise FALSE is returned.=0D
+  TagSize must be 12, 13, 14, 15, 16, otherwise FALSE is returned.=0D
+=0D
+  @param[in]   Key         Pointer to the encryption key.=0D
+  @param[in]   KeySize     Size of the encryption key in bytes.=0D
+  @param[in]   Iv          Pointer to the IV value.=0D
+  @param[in]   IvSize      Size of the IV value in bytes.=0D
+  @param[in]   AData       Pointer to the additional authenticated data (A=
AD).=0D
+  @param[in]   ADataSize   Size of the additional authenticated data (AAD)=
 in bytes.=0D
+  @param[in]   DataIn      Pointer to the input data buffer to be encrypte=
d.=0D
+  @param[in]   DataInSize  Size of the input data buffer in bytes.=0D
+  @param[out]  TagOut      Pointer to a buffer that receives the authentic=
ation tag output.=0D
+  @param[in]   TagSize     Size of the authentication tag in bytes.=0D
+  @param[out]  DataOut     Pointer to a buffer that receives the encryptio=
n output.=0D
+  @param[out]  DataOutSize Size of the output data buffer in bytes.=0D
+=0D
+  @retval TRUE   AEAD AES-GCM authenticated encryption succeeded.=0D
+  @retval FALSE  AEAD AES-GCM authenticated encryption failed.=0D
+=0D
+**/=0D
+BOOLEAN=0D
+EFIAPI=0D
+AeadAesGcmEncrypt (=0D
+  IN   CONST UINT8  *Key,=0D
+  IN   UINTN        KeySize,=0D
+  IN   CONST UINT8  *Iv,=0D
+  IN   UINTN        IvSize,=0D
+  IN   CONST UINT8  *AData,=0D
+  IN   UINTN        ADataSize,=0D
+  IN   CONST UINT8  *DataIn,=0D
+  IN   UINTN        DataInSize,=0D
+  OUT  UINT8        *TagOut,=0D
+  IN   UINTN        TagSize,=0D
+  OUT  UINT8        *DataOut,=0D
+  OUT  UINTN        *DataOutSize=0D
+  );=0D
+=0D
+/**=0D
+  Performs AEAD AES-GCM authenticated decryption on a data buffer and addi=
tional authenticated data (AAD).=0D
+=0D
+  IvSize must be 12, otherwise FALSE is returned.=0D
+  KeySize must be 16, 24 or 32, otherwise FALSE is returned.=0D
+  TagSize must be 12, 13, 14, 15, 16, otherwise FALSE is returned.=0D
+  If additional authenticated data verification fails, FALSE is returned.=
=0D
+=0D
+  @param[in]   Key         Pointer to the encryption key.=0D
+  @param[in]   KeySize     Size of the encryption key in bytes.=0D
+  @param[in]   Iv          Pointer to the IV value.=0D
+  @param[in]   IvSize      Size of the IV value in bytes.=0D
+  @param[in]   AData       Pointer to the additional authenticated data (A=
AD).=0D
+  @param[in]   ADataSize   Size of the additional authenticated data (AAD)=
 in bytes.=0D
+  @param[in]   DataIn      Pointer to the input data buffer to be decrypte=
d.=0D
+  @param[in]   DataInSize  Size of the input data buffer in bytes.=0D
+  @param[in]   Tag         Pointer to a buffer that contains the authentic=
ation tag.=0D
+  @param[in]   TagSize     Size of the authentication tag in bytes.=0D
+  @param[out]  DataOut     Pointer to a buffer that receives the decryptio=
n output.=0D
+  @param[out]  DataOutSize Size of the output data buffer in bytes.=0D
+=0D
+  @retval TRUE   AEAD AES-GCM authenticated decryption succeeded.=0D
+  @retval FALSE  AEAD AES-GCM authenticated decryption failed.=0D
+=0D
+**/=0D
+BOOLEAN=0D
+EFIAPI=0D
+AeadAesGcmDecrypt (=0D
+  IN   CONST UINT8  *Key,=0D
+  IN   UINTN        KeySize,=0D
+  IN   CONST UINT8  *Iv,=0D
+  IN   UINTN        IvSize,=0D
+  IN   CONST UINT8  *AData,=0D
+  IN   UINTN        ADataSize,=0D
+  IN   CONST UINT8  *DataIn,=0D
+  IN   UINTN        DataInSize,=0D
+  IN   CONST UINT8  *Tag,=0D
+  IN   UINTN        TagSize,=0D
+  OUT  UINT8        *DataOut,=0D
+  OUT  UINTN        *DataOutSize=0D
+  );=0D
+=0D
 // =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
 //    Asymmetric Cryptography Primitive=0D
 // =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=0D
--=20
2.26.2.windows.1