From 96604132aa814c86bba2b6ba7e76b9439df4940d Mon Sep 17 00:00:00 2001
From: Paul Duncan <pabs@pablotron.org>
Date: Tue, 5 Sep 2023 15:50:23 -0400
Subject: sha3.c: permute() pass correct round to iota() for turboshake

---
 sha3.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'sha3.c')

diff --git a/sha3.c b/sha3.c
index 6fcb99e..07f1c82 100644
--- a/sha3.c
+++ b/sha3.c
@@ -178,7 +178,7 @@ static inline void permute(uint64_t a[static 25], const size_t num_rounds) {
     rho(a);
     pi(a);
     chi(a);
-    iota(a, i);
+    iota(a, 24 - num_rounds + i);
   }
 }
 
-- 
cgit v1.2.3