Lines Matching refs:Yi
758 ctx->Yi.u[0] = 0;
759 ctx->Yi.u[1] = 0;
768 memcpy(ctx->Yi.c,iv,12);
769 ctx->Yi.c[15]=1;
777 for (i=0; i<16; ++i) ctx->Yi.c[i] ^= iv[i];
778 GCM_MUL(ctx,Yi);
783 for (i=0; i<len; ++i) ctx->Yi.c[i] ^= iv[i];
784 GCM_MUL(ctx,Yi);
789 ctx->Yi.u[1] ^= BSWAP8(len0);
791 ctx->Yi.c[8] ^= (u8)(len0>>56);
792 ctx->Yi.c[9] ^= (u8)(len0>>48);
793 ctx->Yi.c[10] ^= (u8)(len0>>40);
794 ctx->Yi.c[11] ^= (u8)(len0>>32);
795 ctx->Yi.c[12] ^= (u8)(len0>>24);
796 ctx->Yi.c[13] ^= (u8)(len0>>16);
797 ctx->Yi.c[14] ^= (u8)(len0>>8);
798 ctx->Yi.c[15] ^= (u8)(len0);
801 ctx->Yi.u[1] ^= len0;
804 GCM_MUL(ctx,Yi);
808 ctr = BSWAP4(ctx->Yi.d[3]);
810 ctr = GETU32(ctx->Yi.c+12);
813 ctr = ctx->Yi.d[3];
817 (*ctx->block)(ctx->Yi.c,ctx->EK0.c,ctx->key);
821 ctx->Yi.d[3] = BSWAP4(ctr);
823 PUTU32(ctx->Yi.c+12,ctr);
826 ctx->Yi.d[3] = ctr;
917 ctr = BSWAP4(ctx->Yi.d[3]);
919 ctr = GETU32(ctx->Yi.c+12);
922 ctr = ctx->Yi.d[3];
952 (*block)(ctx->Yi.c,ctx->EKi.c,key);
956 ctx->Yi.d[3] = BSWAP4(ctr);
958 PUTU32(ctx->Yi.c+12,ctr);
961 ctx->Yi.d[3] = ctr;
979 (*block)(ctx->Yi.c,ctx->EKi.c,key);
983 ctx->Yi.d[3] = BSWAP4(ctr);
985 PUTU32(ctx->Yi.c+12,ctr);
988 ctx->Yi.d[3] = ctr;
1003 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1007 ctx->Yi.d[3] = BSWAP4(ctr);
1009 PUTU32(ctx->Yi.c+12,ctr);
1012 ctx->Yi.d[3] = ctr;
1024 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1028 ctx->Yi.d[3] = BSWAP4(ctr);
1030 PUTU32(ctx->Yi.c+12,ctr);
1033 ctx->Yi.d[3] = ctr;
1047 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1051 ctx->Yi.d[3] = BSWAP4(ctr);
1053 PUTU32(ctx->Yi.c+12,ctr);
1056 ctx->Yi.d[3] = ctr;
1099 ctr = BSWAP4(ctx->Yi.d[3]);
1101 ctr = GETU32(ctx->Yi.c+12);
1104 ctr = ctx->Yi.d[3];
1137 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1141 ctx->Yi.d[3] = BSWAP4(ctr);
1143 PUTU32(ctx->Yi.c+12,ctr);
1146 ctx->Yi.d[3] = ctr;
1162 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1166 ctx->Yi.d[3] = BSWAP4(ctr);
1168 PUTU32(ctx->Yi.c+12,ctr);
1171 ctx->Yi.d[3] = ctr;
1185 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1189 ctx->Yi.d[3] = BSWAP4(ctr);
1191 PUTU32(ctx->Yi.c+12,ctr);
1194 ctx->Yi.d[3] = ctr;
1208 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1212 ctx->Yi.d[3] = BSWAP4(ctr);
1214 PUTU32(ctx->Yi.c+12,ctr);
1217 ctx->Yi.d[3] = ctr;
1234 (*block)(ctx->Yi.c,ctx->EKi.c,key);
1238 ctx->Yi.d[3] = BSWAP4(ctr);
1240 PUTU32(ctx->Yi.c+12,ctr);
1243 ctx->Yi.d[3] = ctr;
1287 ctr = BSWAP4(ctx->Yi.d[3]);
1289 ctr = GETU32(ctx->Yi.c+12);
1292 ctr = ctx->Yi.d[3];
1310 (*stream)(in,out,GHASH_CHUNK/16,key,ctx->Yi.c);
1314 ctx->Yi.d[3] = BSWAP4(ctr);
1316 PUTU32(ctx->Yi.c+12,ctr);
1319 ctx->Yi.d[3] = ctr;
1330 (*stream)(in,out,j,key,ctx->Yi.c);
1334 ctx->Yi.d[3] = BSWAP4(ctr);
1336 PUTU32(ctx->Yi.c+12,ctr);
1339 ctx->Yi.d[3] = ctr;
1355 (*ctx->block)(ctx->Yi.c,ctx->EKi.c,key);
1359 ctx->Yi.d[3] = BSWAP4(ctr);
1361 PUTU32(ctx->Yi.c+12,ctr);
1364 ctx->Yi.d[3] = ctr;
1405 ctr = BSWAP4(ctx->Yi.d[3]);
1407 ctr = GETU32(ctx->Yi.c+12);
1410 ctr = ctx->Yi.d[3];
1431 (*stream)(in,out,GHASH_CHUNK/16,key,ctx->Yi.c);
1435 ctx->Yi.d[3] = BSWAP4(ctr);
1437 PUTU32(ctx->Yi.c+12,ctr);
1440 ctx->Yi.d[3] = ctr;
1462 (*stream)(in,out,j,key,ctx->Yi.c);
1466 ctx->Yi.d[3] = BSWAP4(ctr);
1468 PUTU32(ctx->Yi.c+12,ctr);
1471 ctx->Yi.d[3] = ctr;
1478 (*ctx->block)(ctx->Yi.c,ctx->EKi.c,key);
1482 ctx->Yi.d[3] = BSWAP4(ctr);
1484 PUTU32(ctx->Yi.c+12,ctr);
1487 ctx->Yi.d[3] = ctr;