Commit 08d09628 authored by Andy Polyakov's avatar Andy Polyakov
Browse files

aes/asm/aesni-sha*-x86_64.pl: fix IV handling in SHAEXT paths. 



Initial IV was disregarded on SHAEXT-capable processors. Amazingly
enough bulk AES128-SHA* talk-to-yourself tests were passing.

Reviewed-by: default avatarRichard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/2992)
parent 0a5d1a38

crypto/aes/asm/aesni-sha1-x86_64.pl

+1 −0
Original line number Diff line number Diff line
@@ -1779,6 +1779,7 @@ $code.=<<___; 
	mov	240($key),$rounds

	sub	$in0,$out

	movups	($key),$rndkey0			# $key[0]

	movups	($ivp),$iv			# load IV

	movups	16($key),$rndkey[0]		# forward reference

	lea	112($key),$key			# size optimization

crypto/aes/asm/aesni-sha256-x86_64.pl

+1 −0
Original line number Diff line number Diff line
@@ -1361,6 +1361,7 @@ $code.=<<___; 
	mov		240($key),$rounds

	sub		$in0,$out

	movups		($key),$rndkey0		# $key[0]

	movups		($ivp),$iv		# load IV

	movups		16($key),$rndkey[0]	# forward reference

	lea		112($key),$key		# size optimization