From a18b8987a5310fbd41774ede33934738beb16dbb Mon Sep 17 00:00:00 2001
From: Christopher Wellons <wellons@nullprogram.com>
Date: Fri, 3 Mar 2017 14:48:52 -0500
Subject: [PATCH] Add the IV to the hash.

---
 enchive.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/enchive.c b/enchive.c
index 8438be6..b89fb22 100644
--- a/enchive.c
+++ b/enchive.c
@@ -70,6 +70,7 @@ symmetric_encrypt(FILE *in, FILE *out, u8 *key, u8 *iv)
     chacha_keysetup(ctx, key, 256);
     chacha_ivsetup(ctx, iv);
     sha256_init(hash);
+    sha256_update(hash, iv, 8);
 
     for (;;) {
         size_t z = fread(buffer[0], 1, sizeof(buffer[0]), in);
@@ -103,6 +104,7 @@ symmetric_decrypt(FILE *in, FILE *out, u8 *key, u8 *iv)
     chacha_keysetup(ctx, key, 256);
     chacha_ivsetup(ctx, iv);
     sha256_init(hash);
+    sha256_update(hash, iv, 8);
 
     /* Always keep SHA224_BLOCK_SIZE bytes in the buffer. */
     if (!(fread(buffer[0], SHA224_BLOCK_SIZE, 1, in))) {