use nRF Hardware Cryptography. Removes the need for the sdk-nrfxlib submodule

2025-12-31 23:21:06 +00:00 · 2022-04-25 11:01:54 +02:00
parent cbf238652e
commit 770f17f382
4 changed files with 20 additions and 63 deletions
--- a/src/nrf52/NRF52CryptoEngine.cpp
+++ b/src/nrf52/NRF52CryptoEngine.cpp
@@ -1,7 +1,6 @@
 #include "configuration.h"
 #include "CryptoEngine.h"
-#include "ocrypto_aes_ctr.h"
-// #include <Adafruit_nRFCrypto.h>
+#include <Adafruit_nRFCrypto.h>

 class NRF52CryptoEngine : public CryptoEngine
 {
@@ -20,12 +19,16 @@ class NRF52CryptoEngine : public CryptoEngine
 //        DEBUG_MSG("NRF52 encrypt!\n");

        if (key.length > 0) {
-            ocrypto_aes_ctr_ctx ctx;
-
+            nRFCrypto.begin();
+            nRFCrypto_AES ctx;
+            uint8_t myLen = ctx.blockLen(numBytes);
+            char encBuf[myLen] = {0};
+            memcpy(encBuf, bytes, numBytes);
            initNonce(fromNode, packetId);
-            ocrypto_aes_ctr_init(&ctx, key.bytes, key.length, nonce);
-
-            ocrypto_aes_ctr_encrypt(&ctx, bytes, bytes, numBytes);
+            ctx.begin();
+            ctx.Process(encBuf, numBytes, nonce, key.bytes, key.length, (char*)bytes, ctx.encryptFlag, ctx.ctrMode);
+            ctx.end();
+            nRFCrypto.end();
        }
    }

@@ -34,60 +37,20 @@ class NRF52CryptoEngine : public CryptoEngine
 //        DEBUG_MSG("NRF52 decrypt!\n");

        if (key.length > 0) {
-            ocrypto_aes_ctr_ctx ctx;
-
+            nRFCrypto.begin();
+            nRFCrypto_AES ctx;
+            uint8_t myLen = ctx.blockLen(numBytes);
+            char decBuf[myLen] = {0};
+            memcpy(decBuf, bytes, numBytes);
            initNonce(fromNode, packetId);
-            ocrypto_aes_ctr_init(&ctx, key.bytes, key.length, nonce);
-
-            ocrypto_aes_ctr_decrypt(&ctx, bytes, bytes, numBytes);
+            ctx.begin();
+            ctx.Process(decBuf, numBytes, nonce, key.bytes, key.length, (char*)bytes, ctx.decryptFlag, ctx.ctrMode);
+            ctx.end();
+            nRFCrypto.end();
        }
    }

  private:
 };

-    // /**
-    //  * Encrypt a packet
-    //  *
-    //  * @param bytes is updated in place
-    //  */
-    // virtual void encrypt(uint32_t fromNode, uint64_t packetId, size_t numBytes, uint8_t *bytes) override
-    // {
-    //     DEBUG_MSG("NRF52 encrypt!\n");
-
-    //     if (key.length > 0) {
-    //         nRFCrypto_AES ctx;
-    //         uint8_t myLen = ctx.blockLen(numBytes);
-    //         char encBuf[myLen] = {0};
-    //         memcpy(encBuf, bytes, numBytes);
-    //         initNonce(fromNode, packetId);
-    //         nRFCrypto.begin();
-    //         ctx.begin();
-    //         ctx.Process(encBuf, numBytes, nonce, key.bytes, key.length, (char*)bytes, ctx.encryptFlag, ctx.ctrMode);
-    //         ctx.end();
-    //         nRFCrypto.end();
-    //     }
-    // }
-
-    // virtual void decrypt(uint32_t fromNode, uint64_t packetId, size_t numBytes, uint8_t *bytes) override
-    // {
-    //     DEBUG_MSG("NRF52 decrypt!\n");
-
-    //     if (key.length > 0) {
-    //         nRFCrypto_AES ctx;
-    //         uint8_t myLen = ctx.blockLen(numBytes);
-    //         char decBuf[myLen] = {0};
-    //         memcpy(decBuf, bytes, numBytes);
-    //         initNonce(fromNode, packetId);
-    //         nRFCrypto.begin();
-    //         ctx.begin();
-    //         ctx.Process(decBuf, numBytes, nonce, key.bytes, key.length, (char*)bytes, ctx.decryptFlag, ctx.ctrMode);
-    //         ctx.end();
-    //         nRFCrypto.end();
-    //     }
-    // }
-
-//   private:
-// };
-
 CryptoEngine *crypto = new NRF52CryptoEngine();