Merge pull request #8107 from JacobBarthelmeh/aesgcm

fix for state of aes.gcm.H on re-use
2025-07-29 18:27:29 +02:00 · 2024-10-23 16:52:42 -05:00
parent 1d25e0f89b d0f5778429
commit 82273094e0
1 changed files with 2 additions and 0 deletions
--- a/wolfcrypt/src/aes.c
+++ b/wolfcrypt/src/aes.c
@ -8063,6 +8063,8 @@ static void GHASH_FINAL(Aes* aes, byte* s, word32 sSz)
    GHASH_LEN_BLOCK(aes);
    /* Copy the result into s. */
    XMEMCPY(s, AES_TAG(aes), sSz);
+    /* reset aes->gcm.H in case of re-use */
+    GHASH_INIT_EXTRA(aes);
 }
 #endif /* WOLFSSL_AESGCM_STREAM */