3 This file is part of the AVR-Crypto-Lib.
4 Copyright (C) 2008, 2009 Daniel Otte (daniel.otte@rub.de)
6 This program is free software: you can redistribute it and/or modify
7 it under the terms of the GNU General Public License as published by
8 the Free Software Foundation, either version 3 of the License, or
9 (at your option) any later version.
11 This program is distributed in the hope that it will be useful,
12 but WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 GNU General Public License for more details.
16 You should have received a copy of the GNU General Public License
17 along with this program. If not, see <http://www.gnu.org/licenses/>.
21 * \email daniel.otte@rub.de
24 * \license GPLv3 or later
28 #include "avr-asm-macros.S"
68 void aes_decrypt_core(aes_cipher_state_t* state, const aes_genctx_t* ks, uint8_t rounds)
94 * param state: r24:r25
98 .global aes_decrypt_core
109 swap r20 /* r20*16 */
114 .irp param, ST00, ST01, ST02, ST03, ST10, ST11, ST12, ST13, ST20, ST21, ST22, ST23, ST30, ST31, ST32, ST33
118 ldi xREDUCER, 0x1b /* load reducer */
119 ldi r31, hi8(aes_invsbox)
122 .irp param, ST33, ST32, ST31, ST30, ST23, ST22, ST21, ST20, ST13, ST12, ST11, ST10, ST03, ST02, ST01, ST00
131 /* substitute and invShift */
132 .irp param, ST00, ST10, ST20, ST30
168 .irp param, ST33, ST32, ST31, ST30, ST23, ST22, ST21, ST20, ST13, ST12, ST11, ST10, ST03, ST02, ST01, ST00
197 /* inv column (row) mixing*/
198 /* invMixCol (Row) 1 */
201 eor T0, ST02 ; T0 = t
203 eor T1, ST01 ; T1 = u
225 /* now the big move */
254 /* invMixCol (Row) 2 */
257 eor T0, ST12 ; T0 = t
259 eor T1, ST11 ; T1 = u
281 /* now the big move */
310 /* invMixCol (Row) 2 */
313 eor T0, ST22 ; T0 = t
315 eor T1, ST21 ; T1 = u
337 /* now the big move */
366 /* invMixCol (Row) 3 */
369 eor T0, ST32 ; T0 = t
371 eor T1, ST31 ; T1 = u
393 /* now the big move */