root
/
openssl
mirror of https://github.com/openssl/openssl.git
1
0
Fork 0
Code Issues Actions 7 Packages Projects Releases Wiki Activity
openssl/providers/implementations/digests
History
Ingo Franzki dc5afb7e87 s390x: Fix s390x_shake_squeeze() when MSA 12 is available 
On the first squeeze call, when finishing the absorb process, also set
the NIP flag, if we are still in XOF_STATE_INIT state. When MSA 12 is
available, the state buffer A has not been zeroed during initialization,
thus we must also pass the NIP flag here. This situation can happen
when a squeeze is performed without a preceding absorb (i.e. a SHAKE
of the empty message).

Add a test that performs a squeeze without a preceding absorb and check
if the result is correct.

Fixes: 25f5d7b85f

Signed-off-by: Ingo Franzki <ifranzki@linux.ibm.com>

Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/25388)
 		2024-09-06 11:26:06 +02:00
..
blake2_impl.h
blake2_prov.c Fix BLAKE2s reporting the same EVP_MD_get_size() as BLAKE2b (64) 2023-11-15 08:41:06 +01:00
blake2b_prov.c Copyright year updates 2024-04-09 13:43:26 +02:00
blake2s_prov.c that open brace { should be on the previous line 2024-07-22 06:55:35 -04:00
build.info
digestcommon.c
md2_prov.c
md4_prov.c
md5_prov.c
md5_sha1_prov.c
mdc2_prov.c
null_prov.c
ripemd_prov.c
sha2_prov.c
sha3_prov.c s390x: Fix s390x_shake_squeeze() when MSA 12 is available 2024-09-06 11:26:06 +02:00
sm3_prov.c
wp_prov.c