Fix AES-CBC for in-place operation

Signed-off-by: Dave Rodgman <dave.rodgman@arm.com>
2023-05-22 23:13:45 +01:00 · 2023-05-22 23:13:45 +01:00 · 262d8ced79
commit 262d8ced79
parent b19b63a639
1 changed files with 12 additions and 17 deletions
--- a/library/aes.c
+++ b/library/aes.c
@ -1071,26 +1071,21 @@ int mbedtls_aes_crypt_cbc(mbedtls_aes_context *ctx,
    const unsigned char *ivp = iv;

    if (mode == MBEDTLS_AES_DECRYPT) {
-        if (length >= 16) {
-            unsigned char temp2[16];
-            memcpy(temp, input + length - 16, 16);
-
-            while (length > 0) {
-                ret = mbedtls_aes_crypt_ecb(ctx, mode, input, temp2);
-                if (ret != 0) {
-                    goto exit;
-                }
-
-                mbedtls_xor(output, temp2, ivp, 16);
-
-                ivp = input;
-
-                input  += 16;
-                output += 16;
-                length -= 16;
+        unsigned char temp2[16];
+        while (length > 0) {
+            memcpy(temp, input, 16);
+            ret = mbedtls_aes_crypt_ecb(ctx, mode, input, temp2);
+            if (ret != 0) {
+                goto exit;
            }

+            mbedtls_xor(output, temp2, iv, 16);
+
            memcpy(iv, temp, 16);
+
+            input  += 16;
+            output += 16;
+            length -= 16;
        }
    } else {
        while (length > 0) {