Wrong tag calculation on GCM/GMAC when AAD size >= 512 MB

intel / intel-ipsec-mb

Intel(R) Multi-Buffer Crypto for IPSec

BSD 3-Clause "New" or "Revised" License

289 stars 87 forks source link

Wrong tag calculation on GCM/GMAC when AAD size >= 512 MB #47

Closed pablodelara closed 4 years ago

pablodelara commented 4 years ago

When doing AES-GCM/GMAC, if AAD size is equal or higher than 512 MB, the calculation of the tag is wrong. This issue has been root caused and a fix will be pushed soon.