Merge pull request wolfSSL#8107 from JacobBarthelmeh/aesgcm

fix for state of aes.gcm.H on re-use
philljj · Oct 23, 2024 · 8227309 · 8227309
2 parents 1d25e0f + d0f5778
commit 8227309
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/wolfcrypt/src/aes.c b/wolfcrypt/src/aes.c
@@ -8063,6 +8063,8 @@ static void GHASH_FINAL(Aes* aes, byte* s, word32 sSz)
     GHASH_LEN_BLOCK(aes);
     /* Copy the result into s. */
     XMEMCPY(s, AES_TAG(aes), sSz);
+    /* reset aes->gcm.H in case of re-use */
+    GHASH_INIT_EXTRA(aes);
 }
 #endif /* WOLFSSL_AESGCM_STREAM */