On Mon, Jul 11, 2022 at 09:34:49PM +0800, Guozihua (Scott) wrote: > Directly calling poly1305_init_arm64 instead of poly1305_init_arch() is also > tried but it would fail the self-test as well. I think that's the correct fix. Are you sure it fails the self-test? It should look like: poly1305_init_arm64(&dctx->h, src); Just like the arm32 version in arch/arm/crypto/poly1305-glue.c. Note that &dctx->h must be used rather than just dctx. - Eric
