driver: crypto: add Espressif HW AES and SHA #97991
Merged
+1,242
−3
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
sylvioalves
force-pushed
the
feature/espressif-crypto-driver
branch
from
7abb36a to
fa84648
Compare
|
The following west manifest projects have changed revision in this Pull Request:
✅ All manifest checks OK Note: This message is automatically posted and updated by the Manifest GitHub Action. |
github-actions
bot
added
manifest
manifest-hal_espressif
DNM (manifest)
zephyrbot
added
area: Tests
zephyrbot
requested review from
LucasTambor,
ceolin,
edersondisouza,
fkokosinski,
katsuster,
kgugala,
marekmatej,
mgielda,
npitre,
raffarost,
tgorochowik,
uLipe,
valeriosetti,
wmrsouza and
ycsin
sylvioalves
force-pushed
the
feature/espressif-crypto-driver
branch
from
fa84648 to
9581d40
Compare
sylvioalves
force-pushed
the
feature/espressif-crypto-driver
branch
2 times, most recently
from
b3603cf to
27d3f53
Compare
marekmatej
previously approved these changes
Oct 23, 2025
valeriosetti
requested changes
Oct 24, 2025
Add into device tree SHA and AES peripherals. Signed-off-by: Sylvio Alves <[email protected]>
sylvioalves
force-pushed
the
feature/espressif-crypto-driver
branch
from
27d3f53 to
745023e
Compare
marekmatej
previously approved these changes
Oct 24, 2025
Add hardware-accelerated SHA driver for Espressif SoCs supporting SHA-224, SHA-256, SHA-384, and SHA-512 algorithms. Supported SoCs: - ESP32: SHA-224/256/384/512 (single-shot operations) - ESP32-S2/S3: SHA-224/256/384/512 (with multi-part support) - ESP32-C2/C3/C6/H2: SHA-224/256 (with multi-part support) Tested with Zephyr crypto subsystem hash_compute() API. Signed-off-by: Sylvio Alves <[email protected]>
Add hardware-accelerated AES driver for Espressif SoCs supporting ECB, CBC, and CTR cipher modes with AES-128, AES-192, and AES-256 key lengths. Supported modes: - ECB (Electronic Codebook) - CBC (Cipher Block Chaining) - CTR (Counter) Supported SoCs: - ESP32: All modes, all key sizes - ESP32-S2/S3: All modes, AES-128/256 only - ESP32-C2/C3/C6/H2: All modes, all key sizes Signed-off-by: Sylvio Alves <[email protected]>
Add support crypto tag into espressif boards. Signed-off-by: Sylvio Alves <[email protected]>
Allow ESP32 SoCs to run AES sample. Signed-off-by: Sylvio Alves <[email protected]>
Allow Espressif SoCs to be tested properly. Signed-off-by: Sylvio Alves <[email protected]>
sylvioalves
force-pushed
the
feature/espressif-crypto-driver
branch
from
745023e to
48e1a7e
Compare
|
marekmatej
approved these changes
Oct 24, 2025
valeriosetti
approved these changes
Oct 24, 2025
ceolin
reviewed
Oct 24, 2025
|
|
||
| switch (algo) { | ||
| case CRYPTO_HASH_ALGO_SHA224: | ||
| params->hal_mode = SHA2_256; |
There was a problem hiding this comment.
is that the right hal mode or it should be SHA2_224 ?
There was a problem hiding this comment.
Hi, no, it must be SHA2_256. Espressif hardware doesn't have a separate SHA-224 engine. SHA-224 is implemented by running the SHA-256 hardware with a custom initialization vector (IV) and truncating the output to 224 bits. Shall I update the PR and add a proper comment in there?
There was a problem hiding this comment.
BTW, it all works good with samples/driver/crypto and also with the improved tests added in here: #98099
There was a problem hiding this comment.
Nope it is fine this way. I saw the comments about prefix IV and I thought that was the reason, but I checked the HAL and saw references to SHA224 and thought was better to confirm.
ceolin
approved these changes
Oct 24, 2025
wmrsouza
approved these changes
Oct 24, 2025
raffarost
approved these changes
Oct 24, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
9 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Add hardware-accelerated crypto drivers for Espressif SoCs, enabling
SHA hashing and AES encryption/decryption operations.
SHA Driver Support:
AES Driver Support:
Also expands crypto test suite to validate SHA-224/256/384/512
algorithms with unified test vector framework.