Removed all references to MICs since they're unused for mode2

Author: kevin-whisper

subsys/bluetooth/controller/ll_sw/nordic/hal/nrf5/aes.c

@@ -39,7 +39,6 @@
 
 #include <hal/nrf_ecb.h>
 
-#if !AES_USE_SOFTDEVICE_ECB_WRAPPER
 void aes_encrypt(aes_data_t * p_aes_data)
 {
     NRF_ECB->ECBDATAPTR = (uint32_t) p_aes_data;
@@ -54,4 +53,3 @@ void aes_encrypt(aes_data_t * p_aes_data)
 
     NRF_ECB->EVENTS_ENDECB = 0;
 }
-#endif

subsys/bluetooth/controller/ll_sw/nordic/hal/nrf5/aes.h

@@ -34,11 +34,9 @@
  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
  * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */
-#ifndef MESH_AES_H__
-#define MESH_AES_H__
+#ifndef MODE2_AES_H__
+#define MODE2_AES_H__
 
-// #include "nrf_soc.h"
-// #include "nrf_mesh_config_core.h"
 #include <stdint.h>
 
 typedef struct {
@@ -49,15 +47,6 @@ typedef struct {
 
 typedef nrf_ecb_hal_data_t aes_data_t;
 
-#ifndef AES_USE_SOFTDEVICE_ECB_WRAPPER
-#define AES_USE_SOFTDEVICE_ECB_WRAPPER SOFTDEVICE_PRESENT
-#endif
-
-#if AES_USE_SOFTDEVICE_ECB_WRAPPER
-#define aes_encrypt(data) (void)sd_ecb_block_encrypt((nrf_ecb_hal_data_t *)(data))
-#else
 void aes_encrypt(aes_data_t *p_aes_data);
 
-#endif
-
-#endif
+#endif // MODE2_AES_H__

subsys/bluetooth/controller/ll_sw/nordic/hal/nrf5/ccm_soft.c renamed to subsys/bluetooth/controller/ll_sw/nordic/hal/nrf5/ccm_mode2_soft.c

@@ -34,16 +34,11 @@
  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
  * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */
+#include "ccm_mode2_soft.h"
+
 #include <string.h>
-// #include <nrf_error.h>
 
-// #include "utils.h"
-// #include "log.h"
 #include "aes.h"
-// #include "toolchain.h"
-
-#include "ccm_soft.h"
-// #include "nrf_mesh_assert.h"
 
 /* How it all works:
  * Generation of the MIC and encryption are two separate procedures.
@@ -93,16 +88,6 @@ typedef struct
     uint16_t counter;
 } a_block_t;
 
-typedef struct
-{
-    uint8_t flags;
-    uint8_t nonce[CCM_NONCE_LENGTH];
-    uint16_t length_field;
-} b0_t;
-
-// NRF_MESH_STATIC_ASSERT(sizeof(a_block_t) == CCM_BLOCK_SIZE);
-// NRF_MESH_STATIC_ASSERT(sizeof(b0_t) == CCM_BLOCK_SIZE);
-
 /**
  * Bytewise XOR for an array.
  *
@@ -124,68 +109,6 @@ static inline void utils_xor(uint8_t * p_dst, const uint8_t * p_src1, const uint
     }
 }
 
-static void ccm_soft_authenticate_blocks(aes_data_t * p_aes_data,
-                                         const uint8_t * p_data,
-                                         uint16_t data_size,
-                                         uint8_t offset_B)
-{
-    uint8_t * p_clear = p_aes_data->cleartext;
-    uint8_t * p_cipher = p_aes_data->ciphertext;
-
-    while (data_size != 0)
-    {
-        if (data_size < (CCM_BLOCK_SIZE - offset_B))
-        {
-            memcpy(&p_clear[offset_B], p_data, data_size);
-            memset(&p_clear[offset_B + data_size], 0x00, CCM_BLOCK_SIZE - (offset_B + data_size));
-            data_size = 0;
-        }
-        else
-        {
-            memcpy(&p_clear[offset_B], p_data, (CCM_BLOCK_SIZE - offset_B));
-            data_size -= (CCM_BLOCK_SIZE - offset_B);
-            p_data += (CCM_BLOCK_SIZE - offset_B);
-        }
-
-        offset_B = 0;
-
-        utils_xor(p_clear, p_cipher, p_clear, CCM_BLOCK_SIZE);
-
-        aes_encrypt((nrf_ecb_hal_data_t *) p_aes_data);
-    }
-}
-
-static void ccm_soft_authenticate(ccm_soft_data_t * p_data, aes_data_t * p_aes_data, uint8_t * T)
-{
-    b0_t * p_b0 = (b0_t *) &p_aes_data->cleartext[0];
-
-    /* construct B0 */
-    p_b0->flags = (
-            ((p_data->a_len > 0 ? 1 : 0) << 6)        |
-            ((((p_data->mic_len - 2)/2) & 0x07) << 3) |
-            ((L_LEN - 1) & 0x07));
-
-    memcpy(p_b0->nonce, p_data->p_nonce, CCM_NONCE_LENGTH);
-    p_b0->length_field = LE2BE16(p_data->m_len);
-
-    aes_encrypt((nrf_ecb_hal_data_t *) p_aes_data);
-
-    if (p_data->a_len > 0)
-    {
-        // NRF_MESH_ASSERT(p_data->a_len < 0xFF00); /* Longer a-data requires different (unsupported) encoding */
-        *((uint16_t *) &p_aes_data->cleartext[0]) = LE2BE16(p_data->a_len);
-
-        ccm_soft_authenticate_blocks(p_aes_data, p_data->p_a, p_data->a_len, 2);
-    }
-
-    if (p_data->m_len > 0)
-    {
-        ccm_soft_authenticate_blocks(p_aes_data, p_data->p_m, p_data->m_len, 0);
-    }
-
-    memcpy(T, p_aes_data->ciphertext, p_data->mic_len);
-}
-
 /**
  * Encrypt all data. Assumes p_aes_data already has key set and cleartext=A[0]
  */
@@ -222,47 +145,20 @@ static inline void build_a_block(const uint8_t * p_nonce, void * A0, uint16_t i)
     p_a_block->counter = LE2BE16(i);
 }
 
-static inline void build_mic(ccm_soft_data_t * p_ccm_data, aes_data_t * p_aes_data, uint8_t * T, uint8_t * p_mic_out)
+void ccm_mode2_soft_encrypt(ccm_soft_data_t * p_data)
 {
-    build_a_block(p_ccm_data->p_nonce, p_aes_data->cleartext, 0);
-
-    /* S0 = AES(A0) */
-    aes_encrypt((nrf_ecb_hal_data_t *) p_aes_data);
-
-    /* MIC = T ^ S0 */
-    utils_xor(p_mic_out, T, p_aes_data->ciphertext, p_ccm_data->mic_len);
-}
-
-void ccm_soft_encrypt(ccm_soft_data_t * p_data)
-{
-#if CCM_DEBUG_MODE_ENABLED
-    __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_encrypt: IN ",  p_data->p_m, p_data->m_len);
-#endif
-
     aes_data_t aes_data;
 
     memcpy(aes_data.key, p_data->p_key, CCM_BLOCK_SIZE);
 
-    ccm_soft_authenticate(p_data, &aes_data, p_data->p_mic);
-
-    build_mic(p_data, &aes_data, p_data->p_mic, p_data->p_mic);
+    build_a_block(p_data->p_nonce, aes_data.cleartext, 0);
 
     /* aes_data.cleartext now contains A0, no need to regenerate it. */
     ccm_soft_crypt(p_data, &aes_data);
-
-#if CCM_DEBUG_MODE_ENABLED
-    __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_encrypt: OUT", p_data->p_out, p_data->m_len);
-    __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_encrypt: MIC", p_data->p_mic, p_data->mic_len);
-#endif
 }
 
-void ccm_soft_decrypt(ccm_soft_data_t * p_data, bool * p_mic_passed)
+void ccm_mode2_soft_decrypt(ccm_soft_data_t * p_data)
 {
-#if CCM_DEBUG_MODE_ENABLED
-    __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_decrypt: IN",  p_data->p_m, p_data->m_len);
-#endif
-    // NRF_MESH_ASSERT_DEBUG(p_data->mic_len <= CCM_MIC_LENGTH_MAX);
-
     aes_data_t aes_data;
 
     memcpy(aes_data.key, p_data->p_key, CCM_BLOCK_SIZE);
@@ -273,29 +169,4 @@ void ccm_soft_decrypt(ccm_soft_data_t * p_data, bool * p_mic_passed)
         build_a_block(p_data->p_nonce, aes_data.cleartext, 0);
         ccm_soft_crypt(p_data, &aes_data);
     }
-
-//     const uint8_t * p_m = p_data->p_m;
-//     p_data->p_m = p_data->p_out;
-
-//     /* Authenticate data */
-//     uint8_t mic_out[CCM_MIC_LENGTH_MAX];
-
-//     ccm_soft_authenticate(p_data, &aes_data, mic_out);
-//     build_mic(p_data, &aes_data, mic_out, mic_out);
-
-//     p_data->p_m = p_m;
-// #if CCM_DEBUG_MODE_ENABLED
-//     __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_decrypt: OUT", p_data->p_out, p_data->m_len);
-//     __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_decrypt: MIC", mic_out, p_data->mic_len);
-// #endif
-
-//     *p_mic_passed = memcmp(mic_out, p_data->p_mic, p_data->mic_len) == 0;
-// #if CCM_DEBUG_MODE_ENABLED
-//     if (!*p_mic_passed)
-//     {
-//         /* No MIC match. */
-//         __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_decrypt: mic_in", p_data->p_mic, p_data->mic_len);
-//         __LOG_XB(LOG_SRC_CCM, LOG_LEVEL_INFO, "ccm_soft_decrypt: mic_out", mic_out, p_data->mic_len);
-//     }
-// #endif
 }

subsys/bluetooth/controller/ll_sw/nordic/hal/nrf5/ccm_soft.h renamed to subsys/bluetooth/controller/ll_sw/nordic/hal/nrf5/ccm_mode2_soft.h

@@ -34,8 +34,8 @@
  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
  * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  */
-#ifndef CCM_SOFT_H__
-#define CCM_SOFT_H__
+#ifndef CCM_MODE2_SOFT_H__
+#define CCM_MODE2_SOFT_H__
 
 #include <stdbool.h>
 #include <stdint.h>
@@ -57,9 +57,6 @@
 /** Length of nonce. */
 #define CCM_NONCE_LENGTH (13)
 
-/** Longest MIC allowed. */
-#define CCM_MIC_LENGTH_MAX  (16)
-
 /**
  * Struct for passing AES-CCM encryption data.
  *
@@ -72,11 +69,7 @@ typedef struct
     const uint8_t * p_m;                    /**< Message to authenticate and encrypt/decrypt. Set
                                              *   to NULL to skip decryption stage. */
     uint16_t  m_len;                        /**< Message size (in octets). */
-    const uint8_t * p_a;                    /**< Additional authenticated data. */
-    uint16_t a_len;                         /**< Additional data size (in octets). */
     uint8_t * p_out;                        /**< (Out) Encrypted/decrypted output. */
-    uint8_t * p_mic;                        /**< (Out) Message Integrety Check value */
-    uint8_t   mic_len;                      /**< Length of the message integrity check value. */
 } ccm_soft_data_t;
 
 /**
@@ -85,16 +78,15 @@ typedef struct
  * @param p_data Structure with the needed parameters to encrypt the cleartext
  *               message. See @ref ccm_soft_data_t.
  */
-void ccm_soft_encrypt(ccm_soft_data_t * p_data);
+void ccm_mode2_soft_encrypt(ccm_soft_data_t * p_data);
 
 /**
  * Decrypts data using the AES-CCM algorithm.
  *
  * @param p_data       Pointer to structure with parameters for decrypting a message.
  *                     See @ref ccm_soft_data_t.
- * @param p_mic_passed Pointer to bool for storing result of MIC
  */
-void ccm_soft_decrypt(ccm_soft_data_t * p_data, bool * p_mic_passed);
+void ccm_mode2_soft_decrypt(ccm_soft_data_t * p_data);
 
 /**
  * @}

subsys/bluetooth/controller/ll_sw/nordic/lll/lll_conn.c

@@ -37,7 +37,7 @@
 #include "lll_tim_internal.h"
 #include "lll_prof_internal.h"
 
-#include "hal/nrf5/ccm_soft.h"
+#include "hal/nrf5/ccm_mode2_soft.h"
 
 #define BT_DBG_ENABLED IS_ENABLED(CONFIG_BT_DEBUG_HCI_DRIVER)
 #define LOG_MODULE_NAME bt_ctlr_lll_conn
@@ -987,8 +987,6 @@ static inline int isr_rx_pdu(struct lll_conn *lll, struct pdu_data *pdu_data_rx,
 					static uint8_t decrypted_data[64];
 					uint8_t nonce[CCM_NONCE_LENGTH];
 					ccm_soft_data_t ccm_params;
-					ccm_params.a_len = 0;
-					ccm_params.p_a = NULL;
 					//ccm_params.p_nonce = nonce;
 					ccm_params.p_m = scratch_pkt->lldata;
 					ccm_params.m_len = scratch_pkt->len;
@@ -1016,11 +1014,8 @@ static inline int isr_rx_pdu(struct lll_conn *lll, struct pdu_data *pdu_data_rx,
 					nonce[11] = (uint8_t)lll->ccm_rx.iv[6];
 					nonce[12] = (uint8_t)lll->ccm_rx.iv[7];
 					ccm_params.p_nonce = nonce;
-					ccm_params.mic_len = 0;
-					ccm_params.p_mic = NULL;
 
-					bool mic_passed;
-					ccm_soft_decrypt(&ccm_params, &mic_passed);
+					ccm_mode2_soft_decrypt(&ccm_params);
 
 					if (ctrl_pdu_len_check(
 						scratch_pkt->len)) {

subsys/bluetooth/controller/ll_sw/nrf.cmake

@@ -89,8 +89,10 @@ zephyr_library_sources(
   ll_sw/nordic/hal/nrf5/radio/radio.c
   ll_sw/nordic/hal/nrf5/mayfly.c
   ll_sw/nordic/hal/nrf5/ticker.c
+
+  # WHISPER: Below added for MFI
   ll_sw/nordic/hal/nrf5/aes.c
-  ll_sw/nordic/hal/nrf5/ccm_soft.c
+  ll_sw/nordic/hal/nrf5/ccm_mode2_soft.c
   )
 
 zephyr_library_sources_ifdef(