From 63577207ab95a53b29c1fa441be25ee15747bbe0 Mon Sep 17 00:00:00 2001
From: Michael Brown <mcb30@ipxe.org>
Date: Wed, 9 Nov 2022 16:45:54 +0000
Subject: [crypto] Ensure relevant GCM cipher state is cleared by
 cipher_setiv()

Reset the accumulated authentication state when cipher_setiv() is
called, to allow the cipher to be reused without resetting the key.

Signed-off-by: Michael Brown <mcb30@ipxe.org>
---
 src/include/ipxe/gcm.h | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

(limited to 'src/include/ipxe')

diff --git a/src/include/ipxe/gcm.h b/src/include/ipxe/gcm.h
index d93eecd8e..90ef0b522 100644
--- a/src/include/ipxe/gcm.h
+++ b/src/include/ipxe/gcm.h
@@ -44,14 +44,14 @@ union gcm_block {
 
 /** GCM context */
 struct gcm_context {
-	/** Hash key (H) */
-	union gcm_block key;
-	/** Counter (Y) */
-	union gcm_block ctr;
 	/** Accumulated hash (X) */
 	union gcm_block hash;
 	/** Accumulated lengths */
 	union gcm_block len;
+	/** Counter (Y) */
+	union gcm_block ctr;
+	/** Hash key (H) */
+	union gcm_block key;
 	/** Underlying block cipher */
 	struct cipher_algorithm *raw_cipher;
 	/** Underlying block cipher context */
-- 
cgit