commit 262d8ced795d72114c3bfdb0786ae8561ec3e266
author Dave Rodgman <dave.rodgman@arm.com> Mon May 22 23:13:45 2023 +0100
committer Dave Rodgman <dave.rodgman@arm.com> Mon May 22 23:13:45 2023 +0100
tree 6a8917f0cee061951da763c39ebd92c90d781623
parent b19b63a6397874b28d30ce26a8e295730dca84a8

Fix AES-CBC for in-place operation

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>

library/aes.c

diff --git a/library/aes.c b/library/aes.c
index eb3f873..bfcaf35 100644
--- a/library/aes.c
+++ b/library/aes.c
@@ -1071,26 +1071,21 @@
     const unsigned char *ivp = iv;
 
     if (mode == MBEDTLS_AES_DECRYPT) {
-        if (length >= 16) {
-            unsigned char temp2[16];
-            memcpy(temp, input + length - 16, 16);
-
-            while (length > 0) {
-                ret = mbedtls_aes_crypt_ecb(ctx, mode, input, temp2);
-                if (ret != 0) {
-                    goto exit;
-                }
-
-                mbedtls_xor(output, temp2, ivp, 16);
-
-                ivp = input;
-
-                input  += 16;
-                output += 16;
-                length -= 16;
+        unsigned char temp2[16];
+        while (length > 0) {
+            memcpy(temp, input, 16);
+            ret = mbedtls_aes_crypt_ecb(ctx, mode, input, temp2);
+            if (ret != 0) {
+                goto exit;
             }
 
+            mbedtls_xor(output, temp2, iv, 16);
+
             memcpy(iv, temp, 16);
+
+            input  += 16;
+            output += 16;
+            length -= 16;
         }
     } else {
         while (length > 0) {