Fix ABI break (revert to original behaviour)

daverodgman · daverodgman · commit c8e641e5738f · 2024-10-16T09:34:31.000+01:00
Signed-off-by: Dave Rodgman &lt;dave.rodgman@arm.com&gt;
diff --git a/tf-psa-crypto/drivers/builtin/src/chacha20.c b/tf-psa-crypto/drivers/builtin/src/chacha20.c
@@ -366,6 +366,9 @@ static void chacha20_block(const uint32_t initial_state[16],
 void mbedtls_chacha20_init(mbedtls_chacha20_context *ctx)
 {
     mbedtls_platform_zeroize(ctx, sizeof(mbedtls_chacha20_context));
+
+    /* Initially, there's no keystream bytes available */
+    ctx->keystream_bytes_used = CHACHA20_BLOCK_SIZE_BYTES;
 }
 
 void mbedtls_chacha20_free(mbedtls_chacha20_context *ctx)
@@ -418,7 +421,7 @@ int mbedtls_chacha20_starts(mbedtls_chacha20_context *ctx,
     }
 
     /* Initially, there's no keystream bytes available */
-    ctx->keystream_bytes_used = 0U;
+    ctx->keystream_bytes_used = CHACHA20_BLOCK_SIZE_BYTES;
 
     return 0;
 }
@@ -431,11 +434,10 @@ int mbedtls_chacha20_update(mbedtls_chacha20_context *ctx,
     size_t offset = 0U;
 
     /* Use leftover keystream bytes, if available */
-    while (size > 0U && ctx->keystream_bytes_used > 0U &&
-           ctx->keystream_bytes_used < CHACHA20_BLOCK_SIZE_BYTES) {
+    while (size > 0U && ctx->keystream_bytes_used < CHACHA20_BLOCK_SIZE_BYTES) {
         output[offset] = input[offset] ^ ctx->keystream8[ctx->keystream_bytes_used];
 
-        ctx->keystream_bytes_used = (ctx->keystream_bytes_used + 1) % CHACHA20_BLOCK_SIZE_BYTES;
+        ctx->keystream_bytes_used++;
         offset++;
         size--;
     }

Original file line number	Diff line number	Diff line change
`@@ -366,6 +366,9 @@ static void chacha20_block(const uint32_t initial_state[16],`
`366`	`366`	`void mbedtls_chacha20_init(mbedtls_chacha20_context *ctx)`
`367`	`367`	`{`
`368`	`368`	`mbedtls_platform_zeroize(ctx, sizeof(mbedtls_chacha20_context));`
	`369`	`+`
	`370`	`+ /* Initially, there's no keystream bytes available */`
	`371`	`+ ctx->keystream_bytes_used = CHACHA20_BLOCK_SIZE_BYTES;`
`369`	`372`	`}`
`370`	`373`
`371`	`374`	`void mbedtls_chacha20_free(mbedtls_chacha20_context *ctx)`
`@@ -418,7 +421,7 @@ int mbedtls_chacha20_starts(mbedtls_chacha20_context *ctx,`
`418`	`421`	`}`
`419`	`422`
`420`	`423`	`/* Initially, there's no keystream bytes available */`
`421`		`- ctx->keystream_bytes_used = 0U;`
	`424`	`+ ctx->keystream_bytes_used = CHACHA20_BLOCK_SIZE_BYTES;`
`422`	`425`
`423`	`426`	`return 0;`
`424`	`427`	`}`
`@@ -431,11 +434,10 @@ int mbedtls_chacha20_update(mbedtls_chacha20_context *ctx,`
`431`	`434`	`size_t offset = 0U;`
`432`	`435`
`433`	`436`	`/* Use leftover keystream bytes, if available */`
`434`		`- while (size > 0U && ctx->keystream_bytes_used > 0U &&`
`435`		`- ctx->keystream_bytes_used < CHACHA20_BLOCK_SIZE_BYTES) {`
	`437`	`+ while (size > 0U && ctx->keystream_bytes_used < CHACHA20_BLOCK_SIZE_BYTES) {`
`436`	`438`	`output[offset] = input[offset] ^ ctx->keystream8[ctx->keystream_bytes_used];`
`437`	`439`
`438`		`- ctx->keystream_bytes_used = (ctx->keystream_bytes_used + 1) % CHACHA20_BLOCK_SIZE_BYTES;`
	`440`	`+ ctx->keystream_bytes_used++;`
`439`	`441`	`offset++;`
`440`	`442`	`size--;`
`441`	`443`	`}`