namespace internal

// typedefs

typedef ap_uint <512> blockTypeChacha

// structs

struct SHA256Block
struct blake2BlockType
struct blockType

template <>
struct sha256_digest_config <true>

template <>
struct sha256_digest_config <false>

template <bool do_sha224>
struct sha256_digest_config

struct sm3BlkPack

template <int IW>
struct treeAdd <IW, 0>

template <
    int IW,
    int NW
    >
struct treeAdd

// classes

template <int KeyW>
class aesCbcPack

template <int W>
class packBase

// global variables

const ap_uint <21> BASE[]
const ap_uint <32> table16[64][256]
const ap_uint <32> table64[64][256]
const ap_uint <32> table_crc32c[64][256]
const ap_uint <8> PermMap[64]
const ap_uint <8> IPermMap[64]
const ap_uint <8> ExtMap[48]
const ap_uint <4> SP[8][64]
const ap_int <8> FPermMap[32]
const ap_uint <8> PCMapC[28]
const ap_uint <8> PCMapD[28]
const ap_uint <8> PC2Map[48]
const ap_uint <8> subkeyIndex[16][48]
const ap_uint <256> preComputeX[64]
const ap_uint <256> preComputeY[64]
const ap_uint <256> a
const ap_uint <256> b
const ap_uint <256> p
const ap_uint <256> Gx
const ap_uint <256> Gy
const ap_uint <256> n

generateBlock

#include "xf_security/blake2b.hpp"

void generateBlock (
    hls::stream <ap_uint <64>>& msg_strm,
    hls::stream <ap_uint <128>>& msg_len_strm,
    hls::stream <ap_uint <512>>& key_strm,
    hls::stream <ap_uint <8>>& key_len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <blake2BlockType>& blk_strm,
    hls::stream <ap_uint <128>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <128>>& msg_len_out_strm,
    hls::stream <ap_uint <8>>& key_len_out_strm
    )

Generate 1024-bit processing blocks by padding (pipeline).

The algorithm reference is : “The BLAKE2 Cryptographic Hash and Message Authentication Code (MAC)”. The optimization goal of this function is to yield a 1024-bit block per cycle.

Parameters:

w	Bit width of the message words in block, default value is 64.
msg_strm	The message being hashed.
msg_len_strm	Message length in byte (0 <= msg_len <= 2^128).
key_strm	The optional key.
key_len_strm	Key length in byte (0 <= key_len <= 64).
end_len_strm	The flag to signal end of input message stream.
blk_strm	The 1024-bit hash block.
nblk_strm	The number of hash block for this message.
end_nblk_strm	End flag for number of hash block.
msg_len_out_strm	Message length pass on to the digest process.
key_len_out_strm	Key length pass on to the digest process.

ROTR

#include "xf_security/blake2b.hpp"

template <
    unsigned int w = 64,
    unsigned int n = 0
    >
ap_uint <w> ROTR (ap_uint <w> x)

The implementation of rotate right (circular right shift) operation.

The algorithm reference is : “The BLAKE2 Cryptographic Hash and Message Authentication Code (MAC)”.

Parameters:

w	The bit width of input x, default value is 64.
n	Number of bits for input x to be shifted.
x	Word to be rotated.

G

#include "xf_security/blake2b.hpp"

void G (
    ap_uint <64> v [16],
    ap_uint <4> a,
    ap_uint <4> b,
    ap_uint <4> c,
    ap_uint <4> d,
    ap_uint <64> x,
    ap_uint <64> y
    )

Mixing function G as defined in standard.

The algorithm reference is : “The BLAKE2 Cryptographic Hash and Message Authentication Code (MAC)”.

Parameters:

Bit	width of the words, default value is 64.
v	Working vector.
a	The first index.
b	The second index.
c	The third index.
d	the fourth index.
x	The first input working word.
y	The second input working word.

Compress

#include "xf_security/blake2b.hpp"

void Compress (
    ap_uint <64> h [8],
    ap_uint <64> m [16],
    ap_uint <128> t,
    bool last
    )

Compression function F as defined in standard.

The optimization goal of this function is for better performance. The algorithm reference is : “The BLAKE2 Cryptographic Hash and Message Authentication Code (MAC)”.

Parameters:

w	Bit width of the words, default value is 64.
round	Number of rounds, 12 for BLAKE2b and 10 for BLAKE2s.
h	State vector.
m	Message block vector.
t	Offset counter.
last	Final block indicator.

blake2bDigest

#include "xf_security/blake2b.hpp"

void blake2bDigest (
    hls::stream <blake2BlockType>& blk_strm,
    hls::stream <ap_uint <128>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <8>>& key_len_strm,
    hls::stream <ap_uint <128>>& msg_len_strm,
    hls::stream <ap_uint <8>>& out_len_strm,
    hls::stream <ap_uint <512>>& digest_strm,
    hls::stream <bool>& end_digest_strm
    )

The implementation of the digest prcoess of BLAKE2.

The algorithm reference is : “The BLAKE2 Cryptographic Hash and Message Authentication Code (MAC)”. The optimization goal of this function is for better performance.

Parameters:

w	Bit width of the words, default value is 64.
blk_strm	The 512-bit hash block.
nblk_strm	The number of hash block for this message.
end_nblk_strm	End flag for number of hash block.
key_len_strm	Key length in byte (0 <= key_len <= 64).
msg_len_strm	Message length in byte (0 <= msg_len <= 2^128).
out_len_strm	Result hash value length in byte (0 < out_len < 64).
digest_strm	The full digest stream (result is stored in the lower out_len bytes).
end_digest_strm	Flag to signal the end of the result.

aesCbcEncrypt

#include "xf_security/cbc.hpp"

template <unsigned int _keyWidth = 256>
void aesCbcEncrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& initialization_vector,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesCbcEncrypt is CBC encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext	Output encrypted block stream text, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.

aesCbcDecrypt

#include "xf_security/cbc.hpp"

template <unsigned int _keyWidth = 256>
void aesCbcDecrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& IV_strm,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesCbcDecrypt is CBC decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream text to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES decrypition, 128 bits.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.

formatting

#include "xf_security/ccm.hpp"

template <
    unsigned int _t = 16,
    unsigned int _q = 8
    >
void formatting (
    hls::stream <ap_uint <128>>& ADStrm,
    hls::stream <ap_uint <8* (15-_q)>>& nonceStrm,
    hls::stream <ap_uint <64>>& lenADStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <bool>& endLenStrm,
    hls::stream <ap_uint <128>>& blockStrm,
    hls::stream <ap_uint <64>>& outLenADStrm,
    hls::stream <ap_uint <8* (15-_q)>>& outNonceStrm
    )

Impletmentation of formatting function as specified in standard.

The algorithm reference is: “Recommendation for Block Cipher Modes of Operation: The CCM Mode for Authentication and Confidentiality” The implementation is modified for better performance.

Parameters:

_t	Length of the MAC in byte, t is an element of {4, 6, 8, 10, 12, 14, 16}.
_q	Length in byte of the binary representation of the length of the payload in byte, q is an element of {2, 3, 4, 5, 6, 7, 8}.
ADStrm	Associated data stream.
nonceStrm	The nonce stream.
lenADStrm	Length of associated data in byte.
lenPldStrm	Length of payload in byte.
endLenStrm	Flag to signal the end of the length streams.
blockStrm	Block stream of the formatted input as specified in reference.
outLenADStrm	Pass on the length of associated data to CBC-MAC.
outNonceStrm	Pass on the nonce to CTR.

aesCtrEncrypt

#include "xf_security/ccm.hpp"

template <
    unsigned int _q = 8,
    unsigned int _keyWidth = 256
    >
void aesCtrEncrypt (
    hls::stream <ap_uint <128>>& payloadStrm,
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <8* (15-_q)>>& nonceStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <bool>& endLenPldStrm,
    hls::stream <ap_uint <128>>& outPayloadStrm,
    hls::stream <ap_uint <_keyWidth>>& outCipherkeyStrm,
    hls::stream <ap_uint <128>>& S0Strm,
    hls::stream <ap_uint <128>>& cipherStrm,
    hls::stream <ap_uint <64>>& lenCphStrm
    )

Implementation of CTR encryption part in CCM.

The algorithm reference is: “Recommendation for Block Cipher Modes of Operation: The CCM Mode for Authentication and Confidentiality” The implementation is modified for better performance.

Parameters:

_q	Length in byte of the binary representation of the length of the payload in byte, q is an element of {2, 3, 4, 5, 6, 7, 8}.
_keyWidth	Bit-width of the cipher key, typically 128, 192, or 256 for AES.
payloadStrm	Input block stream text to be encrypted.
cipherkeyStrm	Input cipher key used in encryption.
nonceStrm	The nonce stream.
lenPldStrm	Length of payload in byte.
endLenPldStrm	Flag to signal the end of the payload length stream.
outPayloadStrm	Pass on the payload stream to CBC-MAC.
outCipherkeyStrm	Pass on the cipherkey to CBC-MAC.
S0Strm	First cipher used to generate the MAC.
cipherStrm	Output encrypted block stream text.
lenCphStrm	Length of cipher in byte.

aesCtrDecrypt

#include "xf_security/ccm.hpp"

template <
    unsigned int _q = 8,
    unsigned int _keyWidth = 256
    >
void aesCtrDecrypt (
    hls::stream <ap_uint <128>>& payloadStrm,
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <8* (15-_q)>>& nonceStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <bool>& endLenPldStrm,
    hls::stream <ap_uint <128>>& outPayloadStrm,
    hls::stream <ap_uint <_keyWidth>>& outCipherkeyStrm,
    hls::stream <ap_uint <128>>& S0Strm,
    hls::stream <ap_uint <128>>& cipherStrm,
    hls::stream <ap_uint <64>>& lenCphStrm
    )

Implementation of CTR decryption part in CCM.

The algorithm reference is: “Recommendation for Block Cipher Modes of Operation: The CCM Mode for Authentication and Confidentiality” The implementation is modified for better performance.

Parameters:

_q	Length in byte of the binary representation of the length of the payload in byte, q is an element of {2, 3, 4, 5, 6, 7, 8}.
_keyWidth	Bit-width of the cipher key, typically 128, 192, or 256 for AES.
payloadStrm	Input block stream text to be decrypted.
cipherkeyStrm	Input cipher key used in decryption.
nonceStrm	The nonce stream.
lenPldStrm	Length of payload in byte.
endLenPldStrm	Flag to signal the end of the payload length stream.
outPayloadStrm	Pass on the payload stream to CBC-MAC.
outCipherkeyStrm	Pass on the cipherkey to CBC-MAC.
S0Strm	First cipher used to generate the MAC.
cipherStrm	Output decrypted block stream text.
lenCphStrm	Length of cipher in byte.

CBC_MAC

#include "xf_security/ccm.hpp"

template <
    unsigned int _t = 16,
    unsigned int _keyWidth = 256
    >
void CBC_MAC (
    hls::stream <ap_uint <128>>& payloadStrm,
    hls::stream <ap_uint <64>>& lenADStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <ap_uint <128>>& blockStrm,
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <128>>& S0Strm,
    hls::stream <bool>& endLenStrm,
    hls::stream <ap_uint <8*_t>>& tagStrm,
    hls::stream <bool>& endTagStrm
    )

Impletmentation of CBC-MAC in CCM.

The algorithm reference is: “Recommendation for Block Cipher Modes of Operation: The CCM Mode for Authentication and Confidentiality” The implementation is modified for better performance.

Parameters:

_t	Length of the MAC in byte, t is an element of {4, 6, 8, 10, 12, 14, 16}.
_keyWidth	Bit-width of the cipher key, typically 128, 192, or 256 for AES.
payloadStrm	Input block stream text.
lenADStrm	Length of associated data in byte.
lenPldStrm	Length of payload in byte.
blockStrm	Block stream of the formatted input as specified in reference.
cipherkeyStrm	Input cipher key, typically 128, 192, or 256 for AES.
S0Strm	First cipher used to generate the MAC.
endLenStrm	Flag to signal the end of the length streams.
tagStrm	The MAC.
endTagStrm	Flag to signal the end of the MAC stream.

aesCcmEncrypt

#include "xf_security/ccm.hpp"

template <
    unsigned int _t = 16,
    unsigned int _q = 8,
    unsigned int _keyWidth = 256
    >
void aesCcmEncrypt (
    hls::stream <ap_uint <128>>& payloadStrm,
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <8* (15-_q)>>& nonceStrm,
    hls::stream <ap_uint <128>>& ADStrm,
    hls::stream <ap_uint <64>>& lenADStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <bool>& endLenStrm,
    hls::stream <ap_uint <128>>& cipherStrm,
    hls::stream <ap_uint <64>>& lenCphStrm,
    hls::stream <ap_uint <8*_t>>& tagStrm,
    hls::stream <bool>& endTagStrm
    )

aesCcmEncrypt is CCM encryption mode with AES single block cipher.

The algorithm reference is: “Recommendation for Block Cipher Modes of Operation: The CCM Mode for Authentication and Confidentiality” The implementation is modified for better performance.

Parameters:

_t	Length of the MAC in byte, t is an element of {4, 6, 8, 10, 12, 14, 16}.
_q	Length in byte of the binary representation of the length of the payload in byte, q is an element of {2, 3, 4, 5, 6, 7, 8}.
_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
payloadStrm	Input block stream text to be encrypted.
cipherkeyStrm	Input cipher key used in encryption.
nonceStrm	The nonce stream.
ADStrm	Associated data stream.
lenADStrm	Length of associated data in byte.
lenPldStrm	Length of payload in byte.
endLenStrm	Flag to signal the end of the length streams.
cipherStrm	Output encrypted block stream text.
lenCphStrm	Length of cipher in byte.
tagStrm	The MAC stream.
endTagStrm	Flag to signal the end of the MAC stream.

aesCcmDecrypt

#include "xf_security/ccm.hpp"

template <
    unsigned int _t = 16,
    unsigned int _q = 8,
    unsigned int _keyWidth = 256
    >
void aesCcmDecrypt (
    hls::stream <ap_uint <128>>& payloadStrm,
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <8* (15-_q)>>& nonceStrm,
    hls::stream <ap_uint <128>>& ADStrm,
    hls::stream <ap_uint <64>>& lenADStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <bool>& endLenStrm,
    hls::stream <ap_uint <128>>& cipherStrm,
    hls::stream <ap_uint <64>>& lenCphStrm,
    hls::stream <ap_uint <8*_t>>& tagStrm,
    hls::stream <bool>& endTagStrm
    )

aesCcmDecrypt is CCM decryption mode with AES single block cipher.

The algorithm reference is: “Recommendation for Block Cipher Modes of Operation: The CCM Mode for Authentication and Confidentiality” The implementation is modified for better performance.

Parameters:

_t	Length of the MAC in byte, t is an element of {4, 6, 8, 10, 12, 14, 16}.
_q	Length in byte of the binary representation of the length of the payload in byte, q is an element of {2, 3, 4, 5, 6, 7, 8}.
_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
payloadStrm	Input block stream text to be decrypted.
cipherkeyStrm	Input cipher key used in decryption.
nonceStrm	The nonce stream.
ADStrm	Associated data stream.
lenADStrm	Length of associated data in byte.
lenPldStrm	Length of payload in byte.
endLenStrm	Flag to signal the end of the length streams.
cipherStrm	Output decrypted block stream text.
lenCphStrm	Length of cipher in byte.
tagStrm	The MAC stream.
endTagStrm	Flag to signal the end of the MAC stream.

aesCfb1Encrypt

#include "xf_security/cfb.hpp"

template <unsigned int _keyWidth = 256>
void aesCfb1Encrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& initialization_vector,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesCfb1Encrypt is CFB1 encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext	Output encrypted block stream text, each block is 128 bits.
ciphertext_e	End flag of stream ciphertext, 1 bit.

aesCfb1Decrypt

#include "xf_security/cfb.hpp"

template <unsigned int _keyWidth = 256>
void aesCfb1Decrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& IV_strm,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesCfb1Decrypt is CFB1 decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream text to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
IV_strm	Initialization vector for the fisrt iteration of AES decrypition, 128 bits.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of stream plaintext, 1 bit.

aesCfb8Encrypt

#include "xf_security/cfb.hpp"

template <unsigned int _keyWidth = 256>
void aesCfb8Encrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& initialization_vector,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesCfb8Encrypt is CFB8 encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext	Output encrypted block stream text, each block is 128 bits.
ciphertext_e	End flag of stream ciphertext, 1 bit.

aesCfb8Decrypt

#include "xf_security/cfb.hpp"

template <unsigned int _keyWidth>
void aesCfb8Decrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& IV_strm,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesCfb8Decrypt is CFB8 decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream text to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
IV_strm	Initialization vector for the fisrt iteration of AES decrypition, 128 bits.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of stream plaintext, 1 bit.

aesCfb128Encrypt

#include "xf_security/cfb.hpp"

template <unsigned int _keyWidth = 256>
void aesCfb128Encrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& initialization_vector,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesCfb128Encrypt is CFB128 encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext	Output encrypted block stream text, each block is 128 bits.
ciphertext_e	End flag of stream ciphertext, 1 bit.

aesCfb128Decrypt

#include "xf_security/cfb.hpp"

template <unsigned int _keyWidth = 256>
void aesCfb128Decrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& IV_strm,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesCfb128Decrypt is CFB128 decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream text to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
IV_strm	Initialization vector for the fisrt iteration of AES decrypition, 128 bits.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of stream plaintext, 1 bit.

chacha20Imp

#include "xf_security/chacha20.hpp"

void chacha20Imp (
    hls::stream <ap_uint <256>>& keyStrm,
    hls::stream <ap_uint <128>>& counterNonceStrm,
    hls::stream <ap_uint <512>>& plainStrm,
    hls::stream <bool>& ePlainStrm,
    hls::stream <ap_uint <512>>& cipherStrm,
    hls::stream <bool>& eCipherStrm
    )

chacha20 is a function for stream ciphering

Parameters:

keyStrm	initail key
counterNonceStm	initial counter and nonce
plainStrm	input plain text to be encrypted
ePlainStrm	the end flag of plainStrm
cipherStrm	output encrypted text
eCipherStrm	the end flag of cipherStrm

aesCtrEncrypt

#include "xf_security/ctr.hpp"

template <unsigned int _keyWidth = 256>
void aesCtrEncrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& initialization_vector,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesCtrEncrypt is CTR encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext	Output encrypted block stream text, 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.

aesCtrDecrypt

#include "xf_security/ctr.hpp"

template <unsigned int _keyWidth = 256>
void aesCtrDecrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& IV_strm,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesCtrDecrypt is CTR decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream text to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
IV_strm	Initialization vector for the fisrt iteration of AES decrypition, 128 bits.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.

keySchedule

#include "xf_security/des.hpp"

static void keySchedule (
    ap_uint <64> key,
    ap_uint <48> subkeys [16]
    )

keySchedule is to schedule subkeys used in DES and 3DES

Parameters:

key	input original key, 64 bits.
subkeys	output subkeys in encryption or decryption.

aesEcbEncrypt

#include "xf_security/ecb.hpp"

template <unsigned int _keyWidth = 256>
void aesEcbEncrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesEcbEncrypt is ECB encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
ciphertext	Output encrypted block stream text, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.

aesEcbDecrypt

#include "xf_security/ecb.hpp"

template <unsigned int _keyWidth = 256>
void aesEcbDecrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesEcbDecrypt is ECB decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.

generatePubKey

#include "xf_security/ecdsa_nistp256.hpp"

void generatePubKey (
    ap_uint <256> privateKey,
    ap_uint <256>& Qx,
    ap_uint <256>& Qy
    )

Generate Public Key point Q from private key.

Parameters:

privateKey	Private Key.
Qx	X coordinate of point Q.
Qy	Y coordinate of point Q.

verifyPubKey

#include "xf_security/ecdsa_nistp256.hpp"

bool verifyPubKey (
    ap_uint <256> Px,
    ap_uint <256> Py
    )

Verifying Public Key. It will return true if verified, otherwise false.

Parameters:

Px	X coordinate of public key point P.
Py	Y coordinate of public key point P.

aesGctrEncrypt

#include "xf_security/gcm.hpp"

template <unsigned int _keyWidth = 256>
void aesGctrEncrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <ap_uint <64>>& plaintext_length,
    hls::stream <bool>& end_text_length,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <96>>& IV_strm,
    hls::stream <ap_uint <128>>& H_strm,
    hls::stream <ap_uint <128>>& E_K_Y0_strm,
    hls::stream <bool>& end_length,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <ap_uint <64>>& ciphertext_length,
    hls::stream <ap_uint <128>>& ciphertext1,
    hls::stream <ap_uint <64>>& ciphertext_length1
    )

aesGctrEncrypt Encrypt plaintext to cihpertext.

The algorithm reference is: “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for better performance.

Parameters:

plaintext	The plaintext stream.
plaintext_length	Length of plaintext in bits.
end_text_length	Flag to signal the end of the text length stream.
cipherkey	The cipherkey, x-bit for AES-x.
IV_Strm	Initialization vector.
H_strm	The hash subkey passed onto genGMAC.
E_K_Y0_strm	E(K,Y0) as specified in standard passed onto genGMAC.
end_length	End flag passed onto genGMAC.
ciphertext	The ciphertext stream to output port.
ciphertext_length	Length of ciphertext in bits to output port.
ciphertext1	The ciphertext stream to genGMAC.
ciphertext_length1	Length of ciphertext in bits to genGMAC.

aesGctrDecrypt

#include "xf_security/gcm.hpp"

template <unsigned int _keyWidth = 256>
void aesGctrDecrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <ap_uint <64>>& ciphertext_length,
    hls::stream <bool>& end_text_length,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <96>>& IV_strm,
    hls::stream <ap_uint <128>>& H_strm,
    hls::stream <ap_uint <128>>& E_K_Y0_strm,
    hls::stream <bool>& end_length,
    hls::stream <ap_uint <128>>& ciphertext_out,
    hls::stream <ap_uint <64>>& ciphertext_length_out,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <ap_uint <64>>& plaintext_length
    )

aesGctrDecrypt Decrypt ciphertext to plainrtext.

The algorithm reference is: “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for better performance.

Parameters:

ciphertext	The ciphertext stream.
ciphertext_length	Length of ciphertext in bits.
end_text_length	Flag to signal the end of the text length stream.
cipherkey	The cipherkey, x-bit for AES-x.
IV_Strm	Initialization vector.
H_strm	The hash subkey passed onto genGMAC.
E_K_Y0_strm	E(K,Y0) as specified in standard passed onto genGMAC.
end_length	End flag passed onto genGMAC.
ciphertext_out	The ciphertext stream passed onto genGMAC.
ciphertext_length_out	Length of ciphertext in bits passed onto genGMAC.
plaintext	The plaintext stream.
plaintext_length	Length of plaintext in bits.

aesGcmEncrypt

#include "xf_security/gcm.hpp"

template <unsigned int _keyWidth = 256>
void aesGcmEncrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <ap_uint <64>>& plaintext_length,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <96>>& IV,
    hls::stream <ap_uint <128>>& AAD,
    hls::stream <ap_uint <64>>& AAD_length,
    hls::stream <bool>& end_length,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <ap_uint <64>>& ciphertext_length,
    hls::stream <ap_uint <128>>& tag,
    hls::stream <bool>& end_tag
    )

aesGcmEncrypt Top of GCM encryption mode with AES single block cipher.

The algorithm reference is : “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, 128 bits.
plaintext_length	Length of plaintext in bits.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
IV	Initialization vector.
AAD	Additional authenticated data for calculating the tag, 128 bits.
AAD_length	Length of AAD in bits.
end__length	Flag to signal the end of the text length stream.
ciphertext	Output encrypted block stream text, 128 bits.
ciphertext_length	Length of ciphertext in bits.
tag	The MAC.
end_tag	End flag for the MAC.

aesGcmDecrypt

#include "xf_security/gcm.hpp"

template <unsigned int _keyWidth = 256>
void aesGcmDecrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <ap_uint <64>>& ciphertext_length,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <96>>& IV,
    hls::stream <ap_uint <128>>& AAD,
    hls::stream <ap_uint <64>>& AAD_length,
    hls::stream <bool>& end_length,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <ap_uint <64>>& plaintext_length,
    hls::stream <ap_uint <128>>& tag,
    hls::stream <bool>& end_tag
    )

aesGcmDecrypt Top of GCM decryption mode with AES single block cipher.

The algorithm reference is : “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for better performance.

Parameters:

ciphertext	Input block stream text to be decrypted, 128 bits.
ciphertext_length	Length of ciphertext in bits.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
IV	Initialization vector.
AAD	Additional authenticated data for calculating the tag, 128 bits.
AAD_length	Length of AAD in bits.
end__length	Flag to signal the end of the text length stream.
plaintext	Output decrypted block stream text, 128 bits.
plaintext_length	Length of plaintext in bits.
tag	The MAC.
end_tag	End flag for the MAC.

GF128_mult

#include "xf_security/gmac.hpp"

static void GF128_mult (
    ap_uint <128>& X,
    ap_int <128> AAD,
    ap_uint <128> Y [128]
    )

Optimized version of multiplication in GF(2^128)

Because in call of GF128_mult_origin within a loop, the input Y is fixed. So we pre-calculate Y^n in GF(2^128) with GF128_prepare(). This will reduce II in genGMAC from 23 to 1

Parameters:

X	The first operand.
Y	The second operand.
Z	The product.

preGMAC

#include "xf_security/gmac.hpp"

template <unsigned int _keyWidth>
void preGMAC (
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <96>>& IVStrm,
    hls::stream <ap_uint <128>>& HStrm,
    hls::stream <ap_uint <128>>& EKY0Strm
    )

preGMAC generates H and E_K_Y0 based on AES block cipher.

The algorithm reference is: “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for less resource utilizations while having a reasonable latency.

Parameters:

_keyWidth	The bit-width of the cipherkey.
cipherkeyStrm	Input cipherkey, x bits for AES-x.
IVStrm	Initialization vector for the fisrt iteration of AES encrypition.
HStrm	The hash key.
EKY0Strm	E(K, Y0) as specified in the standard.
lenPldStrm	Length of the payload stream (hard-code to zero).

genGMAC

genGMAC overload (1)

#include "xf_security/gmac.hpp"

void genGMAC (
    hls::stream <ap_uint <128>>& AADStrm,
    hls::stream <ap_uint <64>>& lenAADStrm,
    hls::stream <ap_uint <128>>& pldStrm,
    hls::stream <ap_uint <64>>& lenPldStrm,
    hls::stream <ap_uint <128>>& HStrm,
    hls::stream <ap_uint <128>>& EKY0Strm,
    hls::stream <bool>& endLenStrm,
    hls::stream <ap_uint <128>>& tagStrm,
    hls::stream <bool>& endTagStrm
    )

genGMAC This function calculates the MAC using AAD and payload streams. This overload is used by GCM.

The algorithm reference is: “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for less resource utilizations while having a reasonable latency.

Parameters:

AADStrm	Additional authenticated data stream.
lenAADStrm	Length of AAD in bits.
pldStrm	Payload stream.
lenPldStrm	Length of the payload in bits.
HStrm	The hash key.
EKY0Strm	E(K, Y0) as specified in the standard.
endLenStrm	Flag to signal the end of the length streams.
tagStrm	The MAC.
endTagStrm	Flag to signal the end of the MAC stream.

genGMAC overload (2)

#include "xf_security/gmac.hpp"

void genGMAC (
    hls::stream <ap_uint <128>>& AADStrm,
    hls::stream <ap_uint <64>>& lenAADStrm,
    hls::stream <ap_uint <128>>& HStrm,
    hls::stream <ap_uint <128>>& EKY0Strm,
    hls::stream <ap_uint <128>>& tagStrm
    )

genGMAC This function calculates the MAC using only AAD stream. This overload is used by GMAC.

The algorithm reference is: “IEEE Standard for Authenticated Encryption with Length Expansion for Storage Devices” The implementation is modified for less resource utilizations while having a reasonable latency.

Parameters:

AADStrm	Additional authenticated data stream.
lenAADStrm	Length of AAD in bits.
HStrm	The hash key.
EKY0Strm	E(K, Y0) as specified in the standard.
tagStrm	The MAC.

gmacTop

#include "xf_security/gmac.hpp"

template <unsigned int _keyWidth>
void gmacTop (
    hls::stream <ap_uint <128>>& dataStrm,
    hls::stream <ap_uint <64>>& lenDataStrm,
    hls::stream <ap_uint <_keyWidth>>& cipherkeyStrm,
    hls::stream <ap_uint <96>>& IVStrm,
    hls::stream <ap_uint <128>>& tagStrm
    )

gmac The top of GMAC.

Galois Message Authentication Code (GMAC) is a mechanism to provide data origin authentication.

Parameters:

_keyWidth	The bit-width of the cipherkey.
dataStrm	Input text stream to be authenticated.
lenDataStrm	The length of the data in bits.
cipherkeyStrm	Input cihperkey to calculate the hash subkey and E(K,Y0).
IVStrm	Initialization vector.
tagStrm	The MAC stream.

ROTL

#include "xf_security/keccak256.hpp"

template <unsigned int w = 64>
ap_uint <w> ROTL (
    ap_uint <w> x,
    unsigned int n
    )

The implementation of rotate left (circular left shift) operation. The algorithm reference is : “SHA-3 Standard : Permutation-Based Hash and Extendable-Output Functions”.

Parameters:

w	The bit width of input x, default value is 64.
n	Number of bits for input x to be shifted.
x	Word to be rotated.

KECCAK_f

#include "xf_security/keccak256.hpp"

static void KECCAK_f (ap_uint <64> stateArray [25])

The implementation of KECCAK-f permutation function.

The algorithm reference is : “SHA-3 Standard : Permutation-Based Hash and Extendable-Output Functions”. The implementation is modified for better performance.

Parameters:

stateArray

The 5*5*64 state array defined in standard.

keccakDigest

#include "xf_security/keccak256.hpp"

template <unsigned int hashLen = 32>
void keccakDigest (
    hls::stream <ap_uint <64>>& msgStrm,
    hls::stream <ap_uint <128>>& msgLenStrm,
    hls::stream <bool>& endMsgLenStrm,
    hls::stream <ap_uint <8*hashLen>>& digestStrm,
    hls::stream <bool>& endDigestStrm
    )

This function performs the computation of KECCAK[sha-3 standard submitted in 2011].

The algorithm reference is : “The KECCAK SHA-3 submission-Version 3”. Diff with standard SHA-3 lies in multi-rate padding strategy, 0x01 for keccak vs 0x06 for sha-3. The implementation is modified for better performance.

Parameters:

hashLen	The width of the digest in byte, default value is 32.
msgStrm	The message being hashed.
msgLenStrm	Message length in byte.
endMsgLenStrm	The flag to signal end of input message stream.
digestStrm	Output digest stream.
endDigestStrm	End flag for output digest stream.

preProcessing

#include "xf_security/md4.hpp"

static void preProcessing (
    hls::stream <ap_uint <32>>& msg_strm,
    hls::stream <ap_uint <64>>& len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <blockType>& blk_strm,
    hls::stream <ap_uint <64>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm
    )

Generate 512-bit processing blocks by padding and appending (pipeline).

The algorithm reference is : “The MD4 Message-Digest Algorithm”. The optimization goal of this function is to yield a 512-bit block per cycle.

Parameters:

msg_strm	The message being hashed.
len_strm	The message length in byte.
end_len_strm	The flag to signal end of input message stream.
blk_strm	The 512-bit hash block.
nblk_strm	The number of hash block for this message.
end_nblk_strm	End flag for number of hash block.

F

#include "xf_security/md4.hpp"

static ap_uint <32> F (
    ap_uint <32> x,
    ap_uint <32> y,
    ap_uint <32> z
    )

Perform function F as defined in standard.

The algorithm reference is : “The MD4 Message-Digest Algorithm”.

Parameters:

x	The first 32-bit operand.
y	The second 32-bit operand.
z	The third 32-bit operand.

G

#include "xf_security/md4.hpp"

static ap_uint <32> G (
    ap_uint <32> x,
    ap_uint <32> y,
    ap_uint <32> z
    )

Perform function G as defined in standard.

The algorithm reference is : “The MD4 Message-Digest Algorithm”.

Parameters:

x	The first 32-bit operand.
y	The second 32-bit operand.
z	The third 32-bit operand.

H

#include "xf_security/md4.hpp"

static ap_uint <32> H (
    ap_uint <32> x,
    ap_uint <32> y,
    ap_uint <32> z
    )

Perform function H as defined in standard.

The algorithm reference is : “The MD4 Message-Digest Algorithm”.

Parameters:

x	The first 32-bit operand.
y	The second 32-bit operand.
z	The third 32-bit operand.

ROTL

#include "xf_security/md4.hpp"

template <unsigned int w>
ap_uint <w> ROTL (
    unsigned int n,
    ap_uint <w> x
    )

The implementation of rotate left (circular left shift) operation.

The implementation of rotate left (circular left shift) operation. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

The algorithm reference is : “The MD4 Message-Digest Algorithm”.

The algorithm reference is : “The MD5 Message-Digest Algorithm”.

Parameters:

w	The bit width of input x, default value is 32.
n	Number of bits for input x to be shifted.
x	Word to be rotated.
w	The bit width of input x, default value is 32.
n	Number of bits for input x to be shifted.
x	Word to be rotated.
w	The bit width of input x, default value is 32.
n	Number of bits for input x to be shifted.
x	Word to be rotated.

MD4Round1

#include "xf_security/md4.hpp"

static void MD4Round1 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    unsigned int s
    )

The implementation of the function defined in round 1.

The algorithm reference is : “The MD4 Message-Digest Algorithm”. The operation is defined as : a = (a + F(b, c, d) + X[k]) <<< s.

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
s	Number of bits to be shifted.

MD4Round2

#include "xf_security/md4.hpp"

static void MD4Round2 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    unsigned int s
    )

The implementation of the function defined in round 2.

The algorithm reference is : “The MD4 Message-Digest Algorithm”. The operation is defined as : a = (a + G(b, c, d) + X[k] + 0x5a827999) <<< s

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
s	Number of bits to be shifted.

MD4Round3

#include "xf_security/md4.hpp"

static void MD4Round3 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    unsigned int s
    )

The implementation of the function defined in round 3.

The algorithm reference is : “The MD4 Message-Digest Algorithm”. The operation is defined as : a = (a + H(b, c, d) + X[k] + 0x6ed9eba1) <<< s

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
s	Number of bits to be shifted.

MD4Digest

#include "xf_security/md4.hpp"

static void MD4Digest (
    hls::stream <blockType>& blk_strm,
    hls::stream <ap_uint <64>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <128>>& digest_strm,
    hls::stream <bool>& end_digest_strm
    )

The implementation of the digest part of MD4.

The algorithm reference is : “The MD4 Message-Digest Algorithm”. The optimization goal of this function is for better performance.

Parameters:

blk_strm	The 512-bit hash block.
nblk_strm	The number of hash block for this message.
end_nblk_strm	End flag for number of hash block.
digest_strm	The digest (fingerprint) stream.
end_digest_strm	Flag to signal the end of the result.

I

#include "xf_security/md5.hpp"

static ap_uint <32> I (
    ap_uint <32> x,
    ap_uint <32> y,
    ap_uint <32> z
    )

Perform function I as defined in standard.

The algorithm reference is : “The MD5 Message-Digest Algorithm”.

Parameters:

x	The first 32-bit operand.
y	The second 32-bit operand.
z	The third 32-bit operand.

MD5Round1

#include "xf_security/md5.hpp"

static void MD5Round1 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    ap_uint <32> T,
    unsigned int s
    )

The implementation of the function defined in round 1.

The algorithm reference is : “The MD5 Message-Digest Algorithm”. The operation is defined as : a = b + ((a + F(b, c, d) + X + T) <<< s).

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
T	the specific sine value.
s	Number of bits to be shifted.

MD5Round2

#include "xf_security/md5.hpp"

static void MD5Round2 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    ap_uint <32> T,
    unsigned int s
    )

The implementation of the function defined in round 2.

The algorithm reference is : “The MD5 Message-Digest Algorithm”. The operation is defined as : a = b + ((a + G(b, c, d) + X + T) <<< s).

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
T	the specific sine value.
s	Number of bits to be shifted.

MD5Round3

#include "xf_security/md5.hpp"

static void MD5Round3 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    ap_uint <32> T,
    unsigned int s
    )

The implementation of the function defined in round 3.

The algorithm reference is : “The MD5 Message-Digest Algorithm”. The operation is defined as : a = b + ((a + H(b, c, d) + X + T) <<< s).

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
T	the specific sine value.
s	Number of bits to be shifted.

MD5Round4

#include "xf_security/md5.hpp"

static void MD5Round4 (
    ap_uint <32>& a,
    ap_uint <32> b,
    ap_uint <32> c,
    ap_uint <32> d,
    ap_uint <32> X,
    ap_uint <32> T,
    unsigned int s
    )

The implementation of the function defined in round 4.

The algorithm reference is : “The MD5 Message-Digest Algorithm”. The operation is defined as : a = b + ((a + I(b, c, d) + X + T) <<< s).

Parameters:

a	The first 32-bit operand.
b	The second 32-bit operand.
c	The third 32-bit operand.
d	The fourth 32-bit operand.
X	The specific message word.
T	the specific sine value.
s	Number of bits to be shifted.

MD5Digest

#include "xf_security/md5.hpp"

static void MD5Digest (
    hls::stream <blockType>& blk_strm,
    hls::stream <ap_uint <64>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <128>>& digest_strm,
    hls::stream <bool>& end_digest_strm
    )

The implementation of the digest part of MD5.

The algorithm reference is : “The MD5 Message-Digest Algorithm”. The optimization goal of this function is for better performance.

Parameters:

blk_strm	The 512-bit hash block.
nblk_strm	The number of hash block for this message.
end_nblk_strm	End flag for number of hash block.
digest_strm	The digest (fingerprint) stream.
end_digest_strm	Flag to signal the end of the result.

productMod

#include "xf_security/modular.hpp"

template <int N>
ap_uint <N> productMod (
    ap_uint <N> opA,
    ap_uint <N> opB,
    ap_uint <N> opM
    )

return (opA * opB) mod opM

Parameters:

N	bit width of opA, opB and opM
opA	Product input, should be less than opM
opB	Product input, should be less than opM
opM	Modulus, should be larger than 2^(N-1)

addMod

#include "xf_security/modular.hpp"

template <int N>
ap_uint <N> addMod (
    ap_uint <N> opA,
    ap_uint <N> opB,
    ap_uint <N> opM
    )

return (opA + opB) mod opM

Parameters:

N	bit width of opA, opB and opM
opA	Product input, should be less than opM
opB	Product input, should be less than opM
opM	Modulus

subMod

#include "xf_security/modular.hpp"

template <int N>
ap_uint <N> subMod (
    ap_uint <N> opA,
    ap_uint <N> opB,
    ap_uint <N> opM
    )

return (opA - opB) mod opM

Parameters:

N	bit width of opA, opB and opM
opA	Product input, should be less than opM
opB	Product input, should be less than opM
opM	Modulus

monInv

#include "xf_security/modular.hpp"

template <int N>
ap_uint <N> monInv (
    ap_uint <N> opA,
    ap_uint <N> opM
    )

return montgomery inverse of opA Reference: “The Montgomery Modular Inverse - Revisited” by E Savas, CK Koç

Parameters:

N	bit width of opA and opM
opA	Input of modular inverse.
opM	Modulus of modular inverse.

modularInv

#include "xf_security/modular.hpp"

template <int N>
ap_uint <N> modularInv (
    ap_uint <N> opA,
    ap_uint <N> opM
    )

return modular inverse of opA Reference: “The Montgomery Modular Inverse - Revisited” by E Savas, CK Koç

Parameters:

N	bit width of opA and opM, opM should no less than 2^(N-1)
opA	Input of modular inverse. opA should be non-zero, might need extra checking
opM	Modulus of modular inverse.

aesOfbEncrypt

#include "xf_security/ofb.hpp"

template <unsigned int _keyWidth = 256>
void aesOfbEncrypt (
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& initialization_vector,
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e
    )

aesOfbEncrypt is OFB encryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.
cipherkey	Input cipher key used in encryption, x bits for AES-x.
initialization_vector	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext	Output encrypted block stream text, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.

aesOfbDecrypt

#include "xf_security/ofb.hpp"

template <unsigned int _keyWidth = 256>
void aesOfbDecrypt (
    hls::stream <ap_uint <128>>& ciphertext,
    hls::stream <bool>& ciphertext_e,
    hls::stream <ap_uint <_keyWidth>>& cipherkey,
    hls::stream <ap_uint <128>>& IV_strm,
    hls::stream <ap_uint <128>>& plaintext,
    hls::stream <bool>& plaintext_e
    )

aesOfbDecrypt is OFB decryption mode with AES single block cipher.

The algorithm reference is : “Recommendation for Block Cipher Modes of Operation - Methods and Techniques” The implementation is modified for better performance.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext	Input block stream to be decrypted, each block is 128 bits.
ciphertext_e	End flag of block stream ciphertext, 1 bit.
cipherkey	Input cipher key used in decryption, x bits for AES-x.
IV_strm	Initialization vector for the fisrt iteration of AES decrypition, 128 bits.
plaintext	Output decrypted block stream text, each block is 128 bits.
plaintext_e	End flag of block stream plaintext, 1 bit.

multOperator

#include "xf_security/poly1305.hpp"

ap_uint <260> multOperator (
    ap_uint <132> A,
    ap_uint <128> B
    )

The implementation of large bit-width multiplication, the result is A * B. The optimization goal of this function to improve timing.

Parameters:

A	The input multiplicand.
B	The input multiplier.

Returns:

The output product.

resOperator

#include "xf_security/poly1305.hpp"

ap_uint <132> resOperator (ap_uint <260> A)

The implementation of large bit-width Module Operation, the result is A % 2^130-5. The optimization goal of this function to improve timing.

Parameters:

A	The input parameter.

Returns:

The output result.

poly1305Imp

#include "xf_security/poly1305.hpp"

void poly1305Imp (
    ap_uint <132>& accValue,
    ap_uint <256> keyValue,
    ap_uint <128> payload,
    ap_uint <32> lenByte,
    ap_uint <128>& tagValue
    )

The implementation of poly1305.

Parameters:

accValue	The accumulator’s value, initial value is 0, followed by the last output.
keyValue	Corresponding message key
payload	For a massage, input block stream text, 128 bits per block, less than 128 bits, high padding 0
lenByte	Length of a block of payload in byte.
tagValue	return a 16-byte tag to to authenticate the message.

rc4Imp

#include "xf_security/rc4.hpp"

static void rc4Imp (
    hls::stream <ap_uint <8>>& keyStrm,
    hls::stream <bool>& eKeyStrm,
    hls::stream <ap_uint <8>>& plainStream,
    hls::stream <bool>& ePlainStream,
    hls::stream <ap_uint <8>>& cipherStream,
    hls::stream <bool>& eCipherStream
    )

Rc_4 is the basic function for stream ciphering keyLength defined as the number of bytes in the key and can be in the range 1<= keylength <=256, typically between 5 and 16, corresponding to a key length of 40-128 bits.

Parameters:

keyStrm	initail key
eKeyStrm	end flag of keyStrm
plaintStrm	input plain text to be encrypted
ePlaintStrm	the end flag of plaintStrm
cipherStrm	output encrypted text
eCipherStrm	the end flag of cipherStrm

Ch

#include "xf_security/sha1.hpp"

template <unsigned int w>
ap_uint <w> Ch (
    ap_uint <w> x,
    ap_uint <w> y,
    ap_uint <w> z
    )

The implementation of Ch(x,y,z), the sequence of logical functions of SHA-1 where 0 <= t <= 19. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

The implementation of Ch(x,y,z). The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, y, and z, default value is 32.
x	The first w-bit input word.
y	The second w-bit input word.
z	The third w-bit input word.
w	The bit width of input x, y, and z, default value is 64.
x	The first w-bit input word.
y	The second w-bit input word.
z	The third w-bit input word.

Parity

#include "xf_security/sha1.hpp"

template <unsigned int w>
ap_uint <w> Parity (
    ap_uint <w> x,
    ap_uint <w> y,
    ap_uint <w> z
    )

The implementation of Parity(x,y,z), the sequence of logical functions of SHA-1 where 20 <= t <= 39, and 60 <= t <= 79. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, y, and z, default value is 32.
x	The first w-bit input word.
y	The second w-bit input word.
z	The third w-bit input word.

Maj

#include "xf_security/sha1.hpp"

template <unsigned int w>
ap_uint <w> Maj (
    ap_uint <w> x,
    ap_uint <w> y,
    ap_uint <w> z
    )

The implementation of Maj(x,y,z), the sequence of logical functions of SHA-1 where 40 <= t <= 59. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

The implementation of Maj(x,y,z). The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, y, and z, default value is 32.
x	The first w-bit input word.
y	The second w-bit input word.
z	The third w-bit input word.
w	The bit width of input x, y, and z, default value is 64.
x	The first w-bit input word.
y	The second w-bit input word.
z	The third w-bit input word.

generateMsgSchedule

#include "xf_security/sha1.hpp"

template <unsigned int w>
void generateMsgSchedule (
    hls::stream <blockType>& blk_strm,
    hls::stream <ap_uint <64>>& nblk_strm1,
    hls::stream <bool>& end_nblk_strm1,
    hls::stream <ap_uint <w>>& w_strm,
    hls::stream <ap_uint <64>>& nblk_strm2,
    hls::stream <bool>& end_nblk_strm2
    )

Generate message schedule W (80 words) in stream. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of message schedule W which defined in the standard.
blk_strm	Message block stream.
nblk_strm1	Number of message block stream.
end_nblk_strm1	End flag for number of message block stream.
w_strm	The message schedule in stream.
nblk_strm2	Number of message block stream.
end_nblk_strm2	End flag for number of message block stream.

SHA1Digest

#include "xf_security/sha1.hpp"

template <unsigned int w>
void SHA1Digest (
    hls::stream <ap_uint <w>>& w_strm,
    hls::stream <ap_uint <64>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <5*w>>& digest_strm,
    hls::stream <bool>& end_digest_strm
    )

This function performs the computation of the secure hash algorithm.

The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012. The implementation is modified for better performance.

Parameters:

w	The bit width of each input message word, default value is 32.
w_strm	Message schedule stream.
nblk_strm	Number of message block stream.
end_nblk_strm	End flag for number of message block stream.
digest_strm	Output digest stream.
end_digest_strm	End flag for output digest stream.

preProcessing

preProcessing overload (1)

#include "xf_security/sha224_256.hpp"

void preProcessing (
    hls::stream <ap_uint <32>>& msg_strm,
    hls::stream <ap_uint <64>>& len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <SHA256Block>& blk_strm,
    hls::stream <uint64_t>& nblk_strm,
    hls::stream <bool>& end_nblk_strm
    )

Generate 512bit processing blocks for SHA224/SHA256 (pipeline) with const width. The performance goal of this function is to yield a 512b block per cycle.

Parameters:

msg_strm	the message being hashed.
len_strm	the message length in byte.
end_len_strm	that flag to signal end of input.
blk_strm	the 512-bit hash block.
nblk_strm	the number of hash block for this message.
end_nblk_strm	end flag for number of hash block.

preProcessing overload (2)

#include "xf_security/sha224_256.hpp"

void preProcessing (
    hls::stream <ap_uint <64>>& msg_strm,
    hls::stream <ap_uint <64>>& len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <SHA256Block>& blk_strm,
    hls::stream <uint64_t>& nblk_strm,
    hls::stream <bool>& end_nblk_strm
    )

Generate 512bit processing blocks for SHA224/SHA256 (pipeline) with const width. The performance goal of this function is to yield a 512b block per cycle.

Parameters:

msg_strm	the message being hashed.
len_strm	the message length in byte.
end_len_strm	that flag to signal end of input.
blk_strm	the 512-bit hash block.
nblk_strm	the number of hash block for this message.
end_nblk_strm	end flag for number of hash block.

sha256Digest

#include "xf_security/sha224_256.hpp"

template <int h_width>
void sha256Digest (
    hls::stream <uint64_t>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <uint32_t>& w_strm,
    hls::stream <ap_uint <h_width>>& hash_strm,
    hls::stream <bool>& end_hash_strm
    )

Digest message blocks and emit final hash.

Parameters:

h_width	the hash width(type).
nblk_strm	number of message block.
end_nblk_strm	end flag for number of message block.
hash_strm	the hash result stream.
end_hash_strm	end flag for hash result.

sha256_top

#include "xf_security/sha224_256.hpp"

template <
    int m_width,
    int h_width
    >
void sha256_top (
    hls::stream <ap_uint <m_width>>& msg_strm,
    hls::stream <ap_uint <64>>& len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <ap_uint <h_width>>& hash_strm,
    hls::stream <bool>& end_hash_strm
    )

SHA-256/224 implementation top overload for ap_uint input.

Parameters:

m_width	the input message stream width.
h_width	the output hash stream width.
msg_strm	the message being hashed.
len_strm	the length message being hashed in byte.
end_len_strm	end flag stream of input, one per message.
hash_strm	the result.
end_hash_strm	end falg stream of output, one per hash.

sha3Digest

#include "xf_security/sha3.hpp"

template <unsigned int hashLen = 32>
void sha3Digest (
    hls::stream <ap_uint <64>>& msgStrm,
    hls::stream <ap_uint <128>>& msgLenStrm,
    hls::stream <bool>& endMsgLenStrm,
    hls::stream <ap_uint <8*hashLen>>& digestStrm,
    hls::stream <bool>& endDigestStrm
    )

This function performs the computation of SHA-3.

The algorithm reference is : “SHA-3 Standard : Permutation-Based Hash and Extendable-Output Functions”. The implementation is modified for better performance.

Parameters:

hashLen	The width of the digest in byte, default value is 32 (SHA3-256).
msgStrm	The message being hashed.
msgLenStrm	Message length in byte.
endMsgLenStrm	The flag to signal end of input message stream.
digestStrm	Output digest stream.
endDigestStrm	End flag for output digest stream.

shakeXOF

#include "xf_security/sha3.hpp"

template <unsigned int hashLen = 16>
void shakeXOF (
    hls::stream <ap_uint <64>>& msgStrm,
    hls::stream <ap_uint <128>>& msgLenStrm,
    hls::stream <bool>& endMsgLenStrm,
    hls::stream <ap_uint <8*hashLen>>& digestStrm,
    hls::stream <bool>& endDigestStrm
    )

This function performs the computation of SHAKE.

The algorithm reference is : “SHA-3 Standard : Permutation-Based Hash and Extendable-Output Functions”. The implementation is modified for better performance.

Parameters:

hashLen	The width of the digest in byte, default value is 16 (SHAKE-128).
msgStrm	The message being hashed.
msgLenStrm	Message length in byte.
endMsgLenStrm	The flag to signal end of input message stream.
digestStrm	Output digest stream.
endDigestStrm	End flag for output digest stream.

preProcessing

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
static void preProcessing (
    hls::stream <ap_uint <w>>& msg_strm,
    hls::stream <ap_uint <128>>& len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <blockType>& blk_strm,
    hls::stream <ap_uint <128>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm
    )

Generate 1024-bit processing blocks by padding and appending (pipeline).

The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012. The optimization goal of this function is to yield a 1024-bit block per cycle.

Parameters:

w	The bit width of each input message word, default value is 64.
msg_strm	The message being hashed.
len_strm	The message length in byte.
end_len_strm	The flag to signal end of input message stream.
blk_strm	The 1024-bit hash block.
nblk_strm	The number of hash block for this message.
end_nblk_strm	End flag for number of hash block.

SHR

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
ap_uint <w> SHR (
    unsigned int n,
    ap_uint <w> x
    )

The implementation of right shift operation. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, default value is 64.
n	Number of bits for input x to be shifted.
x	Word to be shifted.

ROTR

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
ap_uint <w> ROTR (
    unsigned int n,
    ap_uint <w> x
    )

The implementation of rotate right (circular right shift) operation. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, default value is 64.
n	Number of bits for input x to be shifted.
x	Word to be rotated.

BSIG0

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
ap_uint <w> BSIG0 (ap_uint <w> x)

The implementation of upper-case letter sigma 0. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, default value is 64.
x	The operand.

BSIG1

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
ap_uint <w> BSIG1 (ap_uint <w> x)

The implementation of upper-case letter sigma 1. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, default value is 64.
x	The operand.

SSIG0

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
ap_uint <w> SSIG0 (ap_uint <w> x)

The implementation of lower-case letter sigma 0. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, default value is 64.
x	The operand.

SSIG1

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
ap_uint <w> SSIG1 (ap_uint <w> x)

The implementation of lower-case letter sigma 1. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of input x, default value is 64.
x	The operand.

dup_strm

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
void dup_strm (
    hls::stream <ap_uint <w>>& in_strm,
    hls::stream <bool>& in_e_strm,
    hls::stream <ap_uint <w>>& out1_strm,
    hls::stream <bool>& out1_e_strm,
    hls::stream <ap_uint <w>>& out2_strm,
    hls::stream <bool>& out2_e_strm
    )

Duplicate 1 input stream to 2 output streams.

Parameters:

w	The bit width of the streams.
in_strm	Input stream to be duplicated.
in_e_strm	End flag of input stream.
out1_strm	The first output stream.
out1_e_strm	End flag of the first output stream.
out2_strm	The second output stream.
out2_e_strm	End flag of the second output stream.

generateMsgSchedule

#include "xf_security/sha512_t.hpp"

template <unsigned int w>
void generateMsgSchedule (
    hls::stream <blockType>& blk_strm,
    hls::stream <ap_uint <128>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <w>>& w_strm
    )

Generate message schedule W (80 words) in stream. The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012.

Parameters:

w	The bit width of message schedule W which defined in the standard, default value is 64.
blk_strm	Message block stream.
nblk_strm	Number of message block stream.
end_nblk_strm	End flag for number of message block stream.
w_strm	The message schedule in stream.

SHA512Digest

#include "xf_security/sha512_t.hpp"

template <
    unsigned int w,
    unsigned int hash_width
    >
void SHA512Digest (
    hls::stream <ap_uint <w>>& w_strm,
    hls::stream <ap_uint <128>>& nblk_strm,
    hls::stream <bool>& end_nblk_strm,
    hls::stream <ap_uint <hash_width>>& digest_strm,
    hls::stream <bool>& end_digest_strm
    )

This function performs the computation of SHA-512.

The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012. The implementation is modified for better performance.

Parameters:

w	The bit width of each input message word, default value is 64.
hash_width	The bit width of hash width, which depends on specific algorithm.
w_strm	Message schedule stream.
nblk_strm	Number of message block stream.
end_nblk_strm	End flag for number of message block stream.
digest_strm	Output digest stream.
end_digest_strm	End flag for output digest stream.

sha512Top

#include "xf_security/sha512_t.hpp"

template <
    unsigned int w,
    unsigned int hash_width
    >
void sha512Top (
    hls::stream <ap_uint <w>>& msg_strm,
    hls::stream <ap_uint <128>>& len_strm,
    hls::stream <bool>& end_len_strm,
    hls::stream <ap_uint <hash_width>>& digest_strm,
    hls::stream <bool>& end_digest_strm
    )

Top function of SHA-512.

The algorithm reference is : “Secure Hash Standard”, which published by NIST in February 2012. The implementation dataflows the pre-processing part and message digest part.

Parameters:

w	The bit width of each input message word, default value is 64.
hash_width	The bit width of hash width, which depends on specific algorithm.
msg_strm	The message being hashed.
len_strm	The message length in byte.
end_len_strm	The flag to signal end of input message stream.
digest_strm	Output digest stream.
end_digest_strm	End flag for output digest stream.

aesXtsEncrypt

#include "xf_security/xts.hpp"

template <unsigned int _keyWidth = 256>
void aesXtsEncrypt (
    hls::stream <ap_uint <128>>& plaintext_strm,
    hls::stream <bool>& plaintext_e_strm,
    hls::stream <ap_uint <64>>& len_strm,
    hls::stream <ap_uint <_keyWidth>>& cipherkey_strm,
    hls::stream <ap_uint <128>>& initialization_vector_strm,
    hls::stream <ap_uint <128>>& ciphertext_strm,
    hls::stream <bool>& ciphertext_e_strm
    )

aesXtsEncrypt is XTS encryption mode with AES single block cipher.

The algorithm reference is : “IEEE Standard for Cryptographic Protection of Data on Block-Oriented Storage Devices” The implementation is optimized for better performance in FPGA.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
plaintext_strm	Input block stream text to be encrypted, each block is 128 bits.
plaintext_e_strm	End flag of block stream plaintext, 1 bit.
len_strm	Total length of plaintext in bit, 64 bits.
cipherkey_strm	Input two cipher key used in encryption, x bits for AES-x.
initialization_vector_strm	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
ciphertext_strm	Output encrypted block stream text, 128 bits.
ciphertext_e_strm	End flag of stream ciphertext, 1 bit.

aesXtsDecrypt

#include "xf_security/xts.hpp"

template <unsigned int _keyWidth = 256>
void aesXtsDecrypt (
    hls::stream <ap_uint <128>>& ciphertext_strm,
    hls::stream <bool>& ciphertext_e_strm,
    hls::stream <ap_uint <64>>& len_strm,
    hls::stream <ap_uint <_keyWidth>>& cipherkey_strm,
    hls::stream <ap_uint <128>>& initialization_vector_strm,
    hls::stream <ap_uint <128>>& plaintext_strm,
    hls::stream <bool>& plaintext_e_strm
    )

aesXtsDecrypt is XTS decryption mode with AES single block cipher.

The algorithm reference is : “IEEE Standard for Cryptographic Protection of Data on Block-Oriented Storage Devices” The implementation is optimized for better performance in FPGA.

Parameters:

_keyWidth	The bit-width of the cipher key, which is 128, 192, or 256.
ciphertext_strm	Input block stream text to be decrypted, each block is 128 bits.
ciphertext_e_strm	End flag of block stream ciphertext, 1 bit.
len_strm	Total length of plaintext in bit, 64 bits.
cipherkey_strm	Input two cipher key used in decryption, x bits for AES-x.
initialization_vector_strm	Initialization vector for the fisrt iteration of AES encrypition, 128 bits.
plaintext_strm	Output decrypted block stream text, each block is 128 bits.
plaintext_e_strm	End flag of block stream plaintext, 1 bit.