commit cac5008b177f1b46d0769c42528a6eb9863ecb6e
author Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Mon Feb 26 15:23:03 2018 +0100
committer Manuel Pégourié-Gonnard <manuel.pegourie-gonnard@arm.com> Tue Feb 27 12:39:12 2018 +0100
tree 5ea8401440c43ba7a61d36c320bd655ffe95ac3a
parent f205a012b84e5e06df624841c57158bb1fed0268

aria: define P3 macro

This will allow to replace it with an optimised implementation later

library/aria.c

diff --git a/library/aria.c b/library/aria.c
index 4c59d70..72bcc6a 100644
--- a/library/aria.c
+++ b/library/aria.c
@@ -92,6 +92,13 @@
 #define ARIA_P2(x) (((x) >> 16) ^ ((x) << 16))
 
 /*
+ * modify byte order: ( A B C D ) -> ( D C B A ), i.e. change endianness
+ *
+ * This is submatrix P3 in [1] Appendix B.1
+ */
+#define ARIA_P3(x) ARIA_P2( ARIA_P1 ( x ) )
+
+/*
  * ARIA Affine Transform
  * (a, b, c, d) = state in/out
  *
@@ -336,14 +343,14 @@
     const uint8_t n2 = n1 ? 32 - n1 : 0;    // reverse bit offset
 
     j = (n / 32) % 4;                       // initial word offset
-    t = ARIA_P2( ARIA_P1( b[j] ) );         // big endian
+    t = ARIA_P3( b[j] );                    // big endian
     for( i = 0; i < 4; i++ )
     {
         j = (j + 1) % 4;                    // get next word, big endian
-        u = ARIA_P2( ARIA_P1( b[j] ) );
+        u = ARIA_P3( b[j] );
         t <<= n1;                           // rotate
         t |= u >> n2;
-        t = ARIA_P2( ARIA_P1( t ) );        // back to little endian
+        t = ARIA_P3( t );                   // back to little endian
         r[i] = a[i] ^ t;                    // store
         t = u;                              // move to next word
     }