gcm128.c: fix AAD-only case with AAD length not divisible by 16.

PR: 2859 Submitted by: John Foley

gcm128.c: fix AAD-only case with AAD length not divisible by 16.
PR: 2859 Submitted by: John Foley
9ddd859d · Andy Polyakov · f6ff1aa8 · 9ddd859d
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

crypto/modes/gcm128.c crypto/modes/gcm128.c +1 -1

未找到文件。
--- a/crypto/modes/gcm128.c
+++ b/crypto/modes/gcm128.c
@@ -1401,7 +1401,7 @@ int CRYPTO_gcm128_finish(GCM128_CONTEXT *ctx,const unsigned char *tag,
 	void (*gcm_gmult_p)(u64 Xi[2],const u128 Htable[16])	= ctx->gmult;
 #endif

-	if (ctx->mres)
+	if (ctx->mres || ctx->ares)
 		GCM_MUL(ctx,Xi);

 	if (is_endian.little) {