* \
* * %$z_i = E_K(t_0 \xor m_0)$% is the tweak with the `full final \
* buffer' mask applied, which is the final tag for a final empty \
- * message. \
+ * message. \
*/ \
BLKC_BSET(PRE, t, 0); pre##_eblk(&key->ctx, t, key->v0); \
BLKC_XMOVE(PRE, t, key->m0); pre##_eblk(&key->ctx, t, key->z0); \
/* Determine the buffering plan. Our buffer is going to do double- \
* duty here. The end portion is going to contain mask from the \
* encrypted counter which we mix into the plaintext to encrypt it; \
- * the start portion, which originally mask bytes we've already used, \
- * will hold the output ciphertext, which will eventually be \
- * collected into the OMAC state. \
+ * the start portion, which originally contained mask bytes we've \
+ * already used, will hold the output ciphertext, which will \
+ * eventually be collected into the OMAC state. \
*/ \
rsvr_mkplan(&plan, &pre##_omacpolicy, ctx->off, sz); \
\
/* Determine the buffering plan. Our buffer is going to do double- \
* duty here. The end portion is going to contain mask from the \
* encrypted counter which we mix into the plaintext to encrypt it; \
- * the start portion, which originally mask bytes we've already used, \
- * will hold the input ciphertext, which will eventually be \
- * collected into the OMAC state. \
+ * the start portion, which originally contained mask bytes we've \
+ * already used, will hold the input ciphertext, which will \
+ * eventually be collected into the OMAC state. \
*/ \
rsvr_mkplan(&plan, &pre##_omacpolicy, ctx->off, sz); \
\
return (&key->k); \
} \
\
+static int gcszok(size_t nsz, size_t hsz, size_t msz, size_t tsz) \
+ { return (gaead_szokcommon(&pre##_eax, nsz, hsz, msz, tsz)); } \
+ \
const gcaead pre##_eax = { \
name "-eax", \
pre##_keysz, pre##_eaxnoncesz, pre##_eaxtagsz, \
PRE##_BLKSZ, 0, 0, 0, \
- gckey \
+ gckey, gcszok \
}; \
\
EAX_TESTX(PRE, pre, name, fname)
#include <stdio.h>
#include <mLib/dstr.h>
+#include <mLib/macros.h>
#include <mLib/quis.h>
#include <mLib/testrig.h>
d.len = BLEN(&b); \
\
if (d.len != v[4].len || \
- memcmp(d.buf, v[4].buf, v[4].len) != 0 || \
- memcmp(t.buf, v[5].buf, v[5].len) != 0) { \
+ MEMCMP(d.buf, !=, v[4].buf, v[4].len) || \
+ MEMCMP(t.buf, !=, v[5].buf, v[5].len)) { \
fail_enc: \
printf("\nfail encrypt:\n\tstep = %i", *ip); \
fputs("\n\tkey = ", stdout); type_hex.dump(&v[0], stdout); \
d.len = BLEN(&b); \
\
if (d.len != v[3].len || !win || \
- memcmp(d.buf, v[3].buf, v[3].len) != 0) { \
+ MEMCMP(d.buf, !=, v[3].buf, v[3].len)) { \
fail_dec: \
printf("\nfail decrypt:\n\tstep = %i", *ip); \
fputs("\n\tkey = ", stdout); type_hex.dump(&v[0], stdout); \
~mdw / catacomb / blobdiff