From 28997596f2782d7b09203ac4f01e1f6bf97663cd Mon Sep 17 00:00:00 2001
From: Andy Polyakov <appro@openssl.org>
Date: Wed, 6 Mar 2013 10:42:21 +0100
Subject: [PATCH] ghash-x86_64.pl: fix length handling bug.

Thanks to Shay Gueron & Vlad Krasnov for report.
---
 crypto/modes/asm/ghash-x86_64.pl | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/crypto/modes/asm/ghash-x86_64.pl b/crypto/modes/asm/ghash-x86_64.pl
index 4bbd4ab5d6..df4101cc2d 100644
--- a/crypto/modes/asm/ghash-x86_64.pl
+++ b/crypto/modes/asm/ghash-x86_64.pl
@@ -754,8 +754,9 @@ ___
 $code.=<<___;
 	add	\$0x40,$len
 	jz	.Ldone
-	sub	\$0x10,$len
 	movdqu	0x20($Htbl),$HK
+	sub	\$0x10,$len
+	jz	.Lodd_tail
 .Lskip4x:
 ___
 }
-- 
GitLab