crypto: arm64/aes-blk - update IV after partial final CTR block

Make the arm64 ctr-aes-neon and ctr-aes-ce algorithms update the IV buffer to contain the next counter after processing a partial final block, rather than leave it as the last counter. This makes these algorithms pass the updated AES-CTR tests. Signed-off-by: Eric Biggers <ebiggers@google.com> Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
2024-12-29 15:43:59 +08:00 · 2019-02-14 00:03:54 -08:00 · 2019-02-14 00:03:54 -08:00 · fa5fd3afc7
commit fa5fd3afc7
parent e674dbc088
1 changed files with 1 additions and 2 deletions
--- a/arch/arm64/crypto/aes-modes.S
+++ b/arch/arm64/crypto/aes-modes.S
@ -320,8 +320,7 @@ AES_ENTRY(aes_ctr_encrypt)

 .Lctrtailblock:
 	st1		{v0.16b}, [x0]
-	ldp		x29, x30, [sp], #16
-	ret
+	b		.Lctrout

 .Lctrcarry:
 	umov		x7, v4.d[0]		/* load upper word of ctr  */