Asymmetric cryptographic acceleration core interface
@file
CORE_HEADER_FILE Macro
C
#define CORE_HEADER_FILE
/ Copyright (c) 2018-2020 Silex Insight sa Copyright (c) 2014-2020 Beerten Engineering scs SPDX-License-Identifier: BSD-3-Clause
Default operand endianness
SX_PK_OP_DEFAULT_ENDIANNESS Macro
C
#define SX_PK_OP_DEFAULT_ENDIANNESS 1
0: little endian 1: big endian
struct Function
C
typedef struct sx_pk_accel sx_pk_accel;
@addtogroup SX_PK_CORE
@{
Acceleration request
Struct
C
typedef struct sx_pk_accel sx_pk_accel;
/ SilexPK and hardware constraints /
struct sx_pk_constraints {
/ Maximum simultaneous requests any application can configure. /
int maxpending;
};
A public key operation for offload on a hardware accelerator
Return SilexPK constraints
SX_PK_LIST_CONSTRAINTS Macro
C
typedef struct sx_pk_constraints (FUNC_SX_PK_LIST_CONSTRAINTS)(int index, int usermemsz); #define SX_PK_LIST_CONSTRAINTS ((FUNC_SX_PK_LIST_CONSTRAINTS)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_LIST_CONSTRAINTS)))
If maxpending in sx_pk_constraints is 0, than SilexPK cannot be used with the given environment.
Parameters
index Index should always be 0
Parameters
usermemsz User memory size provided in bytes. Should be non zero for BA414 AHBMaster and BA414 baremetal with no static memory @return Constraints of SilexPK
Description of the (hardware) accelerator capabilities and features.*/
struct sx_pk_capabilities {
Maximum pending requests at any time. */
int maxpending;
Maximum operand size for prime field operands. 0 when not supported. */
int max_gfp_opsz;
Maximum operand size for elliptic curve operands. 0 when not supported. */
int max_ecc_opsz;
Maximum operand size for binary field operands. 0 when not supported. */
int max_gfb_opsz;
Operand size for IK operands. 0 when not supported. */
int ik_opsz; };
Opaque structure for offload with SilexPK library */
struct sx_pk_cnx;
Return the crypto acceleration capabilities and features
SX_PK_FETCH_CAPABILITIES Macro
C
typedef const struct sx_pk_capabilities (FUNC_SX_PK_FETCH_CAPABILITIES)(struct sx_pk_cnx cnx); #define SX_PK_FETCH_CAPABILITIES ((FUNC_SX_PK_FETCH_CAPABILITIES)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_FETCH_CAPABILITIES)))
Parameters
cnx Connection structure obtained through SX_PK_OPEN() at startup @return NULL on failure @return Capabilities of the accelerator on success
Library configuration for SX_PK_OPEN() */
struct sx_pk_config {
Maximum simultaneous requests the application will start.
Set to 0 to use library default. int maxpending;
Device index to use.
For special use cases with multiple independent hardware accelerators. In case of doubt, leave to 0. int devidx;
User memory */
long long usrmem;
Size of user provided memory */
size_t usrmemsz;
Personalization string for IK */
uint32_t personalization;
Personalization string size in 32 bit words
If the size is 0 the personalization string is considered NULL and will not be used. int personalization_sz; };
Open SilexPK and related hardware and allocate internal resources
SX_PK_OPEN Macro
C
typedef struct sx_pk_cnx (FUNC_SX_PK_OPEN)(struct sx_pk_config cfg); #define SX_PK_OPEN ((FUNC_SX_PK_OPEN)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_OPEN)))
Parameters
cfg Configuration to customize SilexPK to application specific needs. @return NULL on failure @return Connection structure for future SilexPK calls on success. Can be used with SilexPK functions to run operations. @see SX_PK_CLOSE()
Finish using any public key acceleration.
SX_PK_CLOSE Macro
C
typedef void (FUNC_SX_PK_CLOSE)(struct sx_pk_cnx cnx); #define SX_PK_CLOSE ((FUNC_SX_PK_CLOSE)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_CLOSE)))
No other hardware acceleration function can be called after this.
Parameters
cnx Connection structure obtained through SX_PK_OPEN() at startup
Encapsulated acceleration request
This structure is used by SX_PK_ACQUIRE_REQ() and _go() functions as a return value struct sx_pk_dreq {
The acquired acceleration request **/
sx_pk_accel req;
The status of SX_PK_ACQUIRE_REQ() **/
int status; };
Get a SilexPK request instance locked to perform the given operation
SX_PK_ACQUIRE_REQ Macro
C
typedef struct sx_pk_dreq (FUNC_SX_PK_ACQUIRE_REQ)(struct sx_pk_cnx cnx, const struct sx_pk_cmd_def cmd); #define SX_PK_ACQUIRE_REQ ((FUNC_SX_PK_ACQUIRE_REQ)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_ACQUIRE_REQ)))
The returned sx_pk_dreq structure contains a status and a pointer to a reserved hardware accelerator instance. That pointer is only valid and usable if status is non-zero.
Parameters
cnx Connection structure obtained through SX_PK_OPEN() at startup
Parameters
cmd The command definition (for example ::SX_PK_CMD_MOD_EXP) @return The acquired acceleration request for this operation @see SX_PK_RELEASE_REQ()
Least significant bit of Ax is 1 (flag A) */
Least significant bit of Rx is 1 (flag B) */
PK_OP_FLAGS_EDDSA_RX_LSB Macro
C
#define PK_OP_FLAGS_EDDSA_RX_LSB (1 << 30)
Return the instance number of the hardware accelerator for this request
int Typedef
C
typedef unsigned int (FUNC_SX_PK_GET_REQ_ID)(sx_pk_accel req);
SX_PK_GET_REQ_ID Macro
C
#define SX_PK_GET_REQ_ID ((FUNC_SX_PK_GET_REQ_ID)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_REQ_ID)))
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ() @return instance number of the hardware accelerator for this request
Add the context pointer to an acceleration request
(FUNC_SX_PK_SET_USER_CONTEXT)(sx_pk_accel Typedef
C
typedef void (FUNC_SX_PK_SET_USER_CONTEXT)(sx_pk_accel req, void context);
SX_PK_SET_USER_CONTEXT Macro
C
#define SX_PK_SET_USER_CONTEXT ((FUNC_SX_PK_SET_USER_CONTEXT)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_SET_USER_CONTEXT)))
The attached pointer can be retrieved by SX_PK_GET_USER_CONTEXT(). After SX_PK_RELEASE_REQ(), the context pointer is not available anymore.
The context can represent any content the user may associate with the PK request.
Parameters
req The acquired acceleration request
Parameters
context Pointer to context @see SX_PK_GET_USER_CONTEXT()
Get the context pointer from an acceleration request
(FUNC_SX_PK_GET_USER_CONTEXT)(sx_pk_accel Typedef
C
typedef void (FUNC_SX_PK_GET_USER_CONTEXT)(sx_pk_accel req);
SX_PK_GET_USER_CONTEXT Macro
C
#define SX_PK_GET_USER_CONTEXT ((FUNC_SX_PK_GET_USER_CONTEXT)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_USER_CONTEXT)))
Parameters
req The acquired acceleration request @return Context pointer from an acceleration request @see SX_PK_SET_USER_CONTEXT()
Return the global operands size detected for the request
(FUNC_SX_PK_GET_OPSIZE)(sx_pk_accel Typedef
C
typedef int (FUNC_SX_PK_GET_OPSIZE)(sx_pk_accel req);
SX_PK_GET_OPSIZE Macro
C
#define SX_PK_GET_OPSIZE ((FUNC_SX_PK_GET_OPSIZE)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_OPSIZE)))
Parameters
req The acquired acceleration request @return Operand size for the request
Operand slot structure */
struct sx_pk_slot {
Memory address of the operand slot **/
char addr; };
Pair of slots
Used to store large values struct sx_pk_dblslot {
First slot **/
struct sx_pk_slot a;
Second slot **/
struct sx_pk_slot b; };
List slots for input operands for an ECC operation
SX_PK_LIST_ECC_INSLOTS Macro
C
typedef int (FUNC_SX_PK_LIST_ECC_INSLOTS)(sx_pk_accel req, const struct sx_pk_ecurve curve, int flags, struct sx_pk_slot inputs); #define SX_PK_LIST_ECC_INSLOTS ((FUNC_SX_PK_LIST_ECC_INSLOTS)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_LIST_ECC_INSLOTS)))
Once the function completes with ::SX_OK, write each operand to the address found in the corresponding slot.
That applies to all ECC operations.
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ()
Parameters
curve The curve used for that ECC operation
Parameters
flags Operation specific flags
Parameters
inputs List of input slots that will be filled in. See inputslots.h for predefined lists of input slots per operation. @return ::SX_OK @return ::SX_ERR_OPERAND_TOO_LARGE @return ::SX_ERR_BUSY
List slots for input operands for a GF(p) modular operation.
SX_PK_LIST_GFP_INSLOTS Macro
C
typedef int (FUNC_SX_PK_LIST_GFP_INSLOTS)(sx_pk_accel req, const int opsizes, struct sx_pk_slot inputs); #define SX_PK_LIST_GFP_INSLOTS ((FUNC_SX_PK_LIST_GFP_INSLOTS)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_LIST_GFP_INSLOTS)))
Once the function completes with ::SX_OK, write each operands to the address found in the corresponding slot.
That applies to all operations except ECC.
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ()
Parameters
opsizes List of operand sizes in bytes
Parameters
inputs List of input slots that will be filled in. See inputslots.h for predefined lists of input slots per operation. @return ::SX_OK @return ::SX_ERR_OPERAND_TOO_LARGE @return ::SX_ERR_BUSY
Run the operation request in hardware.
(FUNC_SX_PK_RUN)(sx_pk_accel Typedef
C
typedef void (FUNC_SX_PK_RUN)(sx_pk_accel req);
SX_PK_RUN Macro
C
#define SX_PK_RUN ((FUNC_SX_PK_RUN)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_RUN)))
@pre To be called after all operands have been written in the slots obtainded with SX_PK_LIST_ECC_INSLOTS() or SX_PK_LIST_GFP_INSLOTS(). After that the acceleration request is pending.
@post The caller should wait until the operation finishes with SX_PK_WAIT() or do polling by using sx_pk_has_finished().
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ()
Check if the current operation is still ongoing or finished
(FUNC_SX_PK_GET_STATUS)(sx_pk_accel Typedef
C
typedef int (FUNC_SX_PK_GET_STATUS)(sx_pk_accel req);
SX_PK_GET_STATUS Macro
C
#define SX_PK_GET_STATUS ((FUNC_SX_PK_GET_STATUS)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_STATUS)))
Read the status of a request. When the accelerator is still busy, return ::SX_ERR_BUSY. When the accelerator finished, return ::SX_OK. May only be called after SX_PK_RUN(). May not be called after sx_pk_has_finished() or other functions like SX_PK_WAIT() reported that the operation finished.
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ() @return Any \ref SX_PK_STATUS "status code"
Legacy name of SX_PK_GET_STATUS() **/
Wait until the current operation finishes.
(FUNC_SX_PK_WAIT)(sx_pk_accel Typedef
C
typedef int (FUNC_SX_PK_WAIT)(sx_pk_accel req);
SX_PK_WAIT Macro
C
#define SX_PK_WAIT ((FUNC_SX_PK_WAIT)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_WAIT)))
After the operation finishes, return the operation status code.
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ() @return Any \ref SX_PK_STATUS "status code"
Clear the interrupt request signal
(FUNC_SX_PK_CLEAR_IRQ)(void); Typedef
C
typedef void (FUNC_SX_PK_CLEAR_IRQ)(void);
SX_PK_CLEARIRQ Macro
C
#define SX_PK_CLEARIRQ ((FUNC_SX_PK_CLEAR_IRQ)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_CLEARIRQ)))
Clear the IRQ request signal
Return the public key acceleration request which finished its operation.
SX_PK_POP_FINISHED_REQ Macro
C
typedef sx_pk_accel (FUNC_SX_PK_POP_FINISHED_REQ)(struct sx_pk_cnx cnx); #define SX_PK_POP_FINISHED_REQ ((FUNC_SX_PK_POP_FINISHED_REQ)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_POP_FINISHED_REQ)))
If no public key accelerator finished or none has an operation, return NULL. The results from the returned sx_pk_accel should be used as soon as possible and the instances given back with SX_PK_RELEASE_REQ().
Parameters
cnx Connection structure obtained through SX_PK_OPEN() at startup @return NULL when no public key accelerator finished or none has an operation @return The acceleration request which finished its operation
Return a platform notification that notifies when a request completed.
SX_PK_GET_GLOBAL_NOTIFICATION_ID Macro
C
typedef int (FUNC_SX_PK_GET_GLOBAL_NOTIFICATION_ID)(struct sx_pk_cnx cnx); #define SX_PK_GET_GLOBAL_NOTIFICATION_ID ((FUNC_SX_PK_GET_GLOBAL_NOTIFICATION_ID)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_GLOBAL_NOTIFICATION_ID)))
The platform notification id is:
-1 if not available
a fd on POSIX systems
an interrupt line number
When a request completes the notification will activate. The fd will become readable and the interrupt line will generate an interrupt. The returned platform notification can be used once. After the platform notification or after SX_PK_POP_FINISHED_REQ(), the notification id shall not be used anymore.
May not be used in combination with SX_PK_WAIT().
Parameters
cnx Connection structure obtained through SX_PK_OPEN() at startup @return platform notification id
Legacy name of SX_PK_GET_GLOBAL_NOTIFICATION_ID() **/
Return a platform notification id of completion of this request
(FUNC_SX_PK_GET_REQ_COMPLETION_ID)(sx_pk_accel Typedef
C
typedef int (FUNC_SX_PK_GET_REQ_COMPLETION_ID)(sx_pk_accel req);
SX_PK_GET_REQ_COMPLETION_ID Macro
C
#define SX_PK_GET_REQ_COMPLETION_ID ((FUNC_SX_PK_GET_REQ_COMPLETION_ID)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_REQ_COMPLETION_ID)))
The platform notification id is:
-1 if not available
a fd on POSIX systems
an interrupt line number
When the request completes the notification will activate. The fd will become readable and the interrupt line will generate an interrupt. After it was used or after SX_PK_POP_FINISHED_REQ(), the fd or interrupt line shall not be used anymore.
May not be used in combination with SX_PK_WAIT().
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ() @return platform notification id
Fetch array of addresses to output operands
char Typedef
C
typedef const char (FUNC_SX_PK_GET_OUTPUT_OPS)(sx_pk_accel req);
SX_PK_GET_OUTPUT_OPS Macro
C
#define SX_PK_GET_OUTPUT_OPS ((FUNC_SX_PK_GET_OUTPUT_OPS)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_GET_OUTPUT_OPS)))
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ() @return Array of addresses to output operands
Give back the public key acceleration request.
(FUNC_SX_PK_RELEASE_REQ)(sx_pk_accel Typedef
C
typedef void (FUNC_SX_PK_RELEASE_REQ)(sx_pk_accel req);
SX_PK_RELEASE_REQ Macro
C
#define SX_PK_RELEASE_REQ ((FUNC_SX_PK_RELEASE_REQ)((uint32_t )(API_TABLE_BASE_ADDRESS + ATO_SX_PK_RELEASE_REQ)))
Release the reserved resources
@pre SX_PK_ACQUIRE_REQ() should have been called before this function is called and not being in use by the hardware
Parameters
req The acceleration request obtained through SX_PK_ACQUIRE_REQ() operation has finished
Elliptic curve configuration and parameters.
To be used only via the functions in ec_curves.h The internal members of the structure should not be accessed directly. struct sx_pk_ecurve { uint32_t curveflags; int sz; const char params; int offset; struct sx_pk_cnx cnx; };
}