From cead42fc5cf5ff8c1c13f123e4c002077b42f6cd Mon Sep 17 00:00:00 2001
From: Mark Wooding <mdw@distorted.org.uk>
Date: Wed, 18 Sep 2019 18:24:49 +0100
Subject: [PATCH] symm/rijndael-arm64-crypto.S: Fix bogus element-to-GP move.

Spotted by Clang's assembler.  GAS is obviously too lenient.
---
 symm/rijndael-arm64-crypto.S | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/symm/rijndael-arm64-crypto.S b/symm/rijndael-arm64-crypto.S
index f2d3f459..98f61734 100644
--- a/symm/rijndael-arm64-crypto.S
+++ b/symm/rijndael-arm64-crypto.S
@@ -110,7 +110,7 @@ FUNC(rijndael_setup_arm64_crypto)
 	// the byte substitution.
 	dup	v0.4s, w14
 	aese	v0.16b, v1.16b		// effectively, just SubBytes
-	mov	w14, v0.4s[0]
+	mov	w14, v0.s[0]
 	b	2f
 
 	// First word of the cycle.  Byte substitution, rotation, and round
@@ -118,7 +118,7 @@ FUNC(rijndael_setup_arm64_crypto)
 1:	ldrb	w13, [x5], #1		// next round constant
 	dup	v0.4s, w14
 	aese	v0.16b, v1.16b		// effectively, just SubBytes
-	mov	w14, v0.4s[0]
+	mov	w14, v0.s[0]
 	eor	w14, w13, w14, ror #8
 
 	// Common ending: mix in the word from the previous cycle and store.
-- 
2.11.0