Aarch64 Poly1305: fix corner case

Don't mask top 26 bits as it may have next bit set as reduction step was only approximate.
2024-12-11 12:49:21 +10:00
parent 9bec6da2ff
commit c0f3b433b2
1 changed files with 0 additions and 1 deletions
--- a/wolfcrypt/src/port/arm/armv8-poly1305.c
+++ b/wolfcrypt/src/port/arm/armv8-poly1305.c
@@ -146,7 +146,6 @@ static WC_INLINE void poly1305_blocks_aarch64_16(Poly1305* ctx,
        "AND        x5, x10, x4, LSR #26\n\t"
        "AND        x4, x4, x10\n\t"
        "AND        x6, x6, x10\n\t"
-        "AND        x8, x8, x10\n\t"
        "STP        w4, w5, [%[ctx_h], #0]   \n\t"
        "STP        w6, w7, [%[ctx_h], #8]   \n\t"
        "STR        w8, [%[ctx_h], #16]   \n\t"