From 78d767f5eca76577b7968367b7577ab97d2d4f84 Mon Sep 17 00:00:00 2001 From: Andy Polyakov Date: Mon, 13 Aug 2012 15:32:18 +0000 Subject: [PATCH] gcm128.c: fix AAD-only case with AAD length not divisible by 16 [from HEAD]. PR: 2859 Submitted by: John Foley --- crypto/modes/gcm128.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/crypto/modes/gcm128.c b/crypto/modes/gcm128.c index ec6c1b30b2..0e6ff8b0a1 100644 --- a/crypto/modes/gcm128.c +++ b/crypto/modes/gcm128.c @@ -1398,7 +1398,7 @@ int CRYPTO_gcm128_finish(GCM128_CONTEXT *ctx,const unsigned char *tag, void (*gcm_gmult_p)(u64 Xi[2],const u128 Htable[16]) = ctx->gmult; #endif - if (ctx->mres) + if (ctx->mres || ctx->ares) GCM_MUL(ctx,Xi); if (is_endian.little) { -- 2.40.0