diff options
author | Andy Polyakov <appro@openssl.org> | 2012-08-13 15:31:10 +0000 |
---|---|---|
committer | Andy Polyakov <appro@openssl.org> | 2012-08-13 15:31:10 +0000 |
commit | f0a069c1a2d488b7668075baf78623bcab36e37d (patch) | |
tree | 6accd38804e9ddf53da0fd030dbbdc038271a73a /crypto/modes | |
parent | 5b4b9ce976fce09a7a92e2f25b91a1635cb840fe (diff) |
gcm128.c: fix AAD-only case with AAD length not divisible by 16 [from HEAD].
PR: 2859
Submitted by: John Foley
Diffstat (limited to 'crypto/modes')
-rw-r--r-- | crypto/modes/gcm128.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/crypto/modes/gcm128.c b/crypto/modes/gcm128.c index ec6c1b30b2..0e6ff8b0a1 100644 --- a/crypto/modes/gcm128.c +++ b/crypto/modes/gcm128.c @@ -1398,7 +1398,7 @@ int CRYPTO_gcm128_finish(GCM128_CONTEXT *ctx,const unsigned char *tag, void (*gcm_gmult_p)(u64 Xi[2],const u128 Htable[16]) = ctx->gmult; #endif - if (ctx->mres) + if (ctx->mres || ctx->ares) GCM_MUL(ctx,Xi); if (is_endian.little) { |