kris/boringssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
b4e3e694e8
boringssl/crypto
History
Brian Smith b4e3e694e8 Use correct counter after invoking stitched AES-NI GCM code. 
Commit a3d9528e9e has a bug that could
cause counters to be reused if |$avx=2| were set in the AES-NI AES-GCM
assembly code, if the EVP interface were used with certain coding
patterns, as demonstrated by the test cases added in
a5ee83f67e.

This changes the encryption code in the same way the decryption code
was changed in a3d9528e9e.

This doesn't have any effect currently since the AES-NI AES-GCM code
has |$avx=0| now, so |aesni_gcm_encrypt| doesn't change the counter.

Change-Id: Iba69cb4d2043d1ea57c6538b398246af28cba006
Reviewed-on: https://boringssl-review.googlesource.com/7193
Reviewed-by: Adam Langley <agl@google.com>
2016-02-26 01:02:40 +00:00
..
aes Mark ARM assembly globals hidden uniformly in arm-xlate.pl. 2016-02-11 17:28:03 +00:00
asn1 OpenSSL reformat x509/, x509v3/, pem/ and asn1/. 2016-01-19 17:01:51 +00:00
base64 Remove calls to ERR_load_crypto_strings. 2016-01-25 23:09:08 +00:00
bio BIO_new_mem_buf should take const void * 2016-02-24 19:14:19 +00:00
bn Move |bn_div_words| to crypto/bn/div.c and make it static. 2016-02-25 16:16:14 +00:00
buf Make |BUF_memdup| look for zero length, not NULL. 2015-10-06 18:11:33 -07:00
bytestring Add a convenience function for i2d compatibility wrappers. 2016-02-16 19:40:53 +00:00
chacha Enable upstream's ChaCha20 assembly for x86 and ARM (32- and 64-bit). 2016-02-23 17:19:45 +00:00
cipher Test different chunk sizes in cipher_test. 2016-02-24 18:12:57 +00:00
cmac Add a run_tests target to run all tests. 2015-10-26 20:33:44 +00:00
conf Also add a no-op stub for OPENSSL_config. 2016-01-26 15:48:51 +00:00
curve25519 ed25519: Don't negate output when decoding. 2016-02-16 21:07:44 +00:00
des Use the straight-forward ROTATE macro. 2015-12-16 19:57:31 +00:00
dh Don't cast |OPENSSL_malloc|/|OPENSSL_realloc| result. 2016-02-11 22:07:56 +00:00
digest Remove the arch-specific HOST_c2l/HOST_l2c implementations. 2016-01-27 22:26:32 +00:00
dsa Remove dead header file. 2016-02-17 01:34:15 +00:00
ec Return 0 on error in |EC_POINT_is_on_curve| instead of -1. 2016-02-24 22:00:58 +00:00
ecdh Clean up |ECDH_compute_key|. 2015-10-27 17:00:25 +00:00
ecdsa Add a convenience function for i2d compatibility wrappers. 2016-02-16 19:40:53 +00:00
engine Unwind DH_METHOD and DSA_METHOD. 2015-11-03 22:54:36 +00:00
err Handle SSL_shutdown while in init more appropriately 2016-02-24 15:57:09 +00:00
evp Implement new PKCS#8 parsers. 2016-02-17 17:24:10 +00:00
hkdf Remove calls to ERR_load_crypto_strings. 2016-01-25 23:09:08 +00:00
hmac Remove condition which always evaluates to true (size_t >= 0). 2015-11-11 22:20:19 +00:00
lhash Add a run_tests target to run all tests. 2015-10-26 20:33:44 +00:00
md4 Make HOST_l2c return void. 2015-12-16 20:02:37 +00:00
md5 Make HOST_l2c return void. 2015-12-16 20:02:37 +00:00
modes Use correct counter after invoking stitched AES-NI GCM code. 2016-02-26 01:02:40 +00:00
obj Allocate a NID for X25519. 2015-12-22 18:56:53 +00:00
pem Remove param_decode and param_encode EVP_PKEY hooks. 2016-02-17 16:30:29 +00:00
perlasm ymm registers are not suffixed with w. 2016-02-23 23:18:53 +00:00
pkcs8 BIO_new_mem_buf should take const void * 2016-02-24 19:14:19 +00:00
poly1305 Switch poly1305-armv4.pl to named constants. 2016-02-26 00:42:05 +00:00
rand Add a few more no-op stubs for cURL compatibility. 2016-01-26 15:48:41 +00:00
rc4 Remove the stitched RC4-MD5 code and use the generic one. 2015-12-16 23:57:42 +00:00
rsa Add missing " in comment. 2016-02-17 21:17:26 +00:00
sha Consistently use named constants in ARM assembly files. 2016-02-23 17:18:18 +00:00
stack If no comparison function is set, sk_sort is a NOP 2016-02-25 20:02:53 +00:00
test Test different chunk sizes in cipher_test. 2016-02-24 18:12:57 +00:00
x509 Fix missing ok=0 with cert verification. 2016-02-25 20:43:58 +00:00
x509v3 Fix wildcard match on punycode/IDNA DNS names 2016-02-23 23:31:18 +00:00
CMakeLists.txt Append to CMAKE_ASM_FLAGS rather than replace it. 2016-02-23 22:48:31 +00:00
constant_time_test.c
cpu-arm-asm.S
cpu-arm.c Remove CRYPTO_set_NEON_functional. 2016-02-23 23:19:46 +00:00
cpu-intel.c Fix |sscanf| format string in cpu-intel.c. 2016-01-21 20:59:35 +00:00
crypto.c Remove CRYPTO_set_NEON_functional. 2016-02-23 23:19:46 +00:00
directory_posix.c
directory_win.c
directory.h
ex_data.c Skip free callbacks on empty CRYPTO_EX_DATAs. 2015-12-15 21:32:14 +00:00
internal.h Fix 32-bit build. 2016-01-27 22:29:52 +00:00
mem.c Fix some indentation. 2016-01-28 00:51:45 +00:00
refcount_c11.c
refcount_lock.c
refcount_test.c
thread_none.c
thread_pthread.c Make sure pthread_once() succeeds. 2015-11-17 21:44:40 +00:00
thread_test.c Use the correct case for Windows headers. 2015-06-09 21:38:04 +00:00
thread_win.c Fix data <-> function pointer casts in thread_win.c. 2016-01-27 22:08:26 +00:00
thread.c
time_support.c Remove some mingw support cruft. 2016-01-25 23:05:45 +00:00