https://bugs.linaro.org/show_bug.cgi?id=3003
Bug ID: 3003
Summary: AES-GCM returns 'valid' tag when checking invalid tag
Product: OpenDataPlane - linux- generic reference
Version: unspecified
Hardware: Other
OS: Linux
Status: UNCONFIRMED
Severity: enhancement
Priority: ---
Component: Crypto
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected]
Target Milestone: ---
AES-GCM implementation does not really check passed tag value.
In case of AES-GCM, EVP_DecryptFinal_ex will return value < 0, if there was an
error, = 0 if tag is invalid and > 0 if tag verification succeeds. However
linux-generic code checks only for < 0 (error) case.
--
You are receiving this mail because:
You are on the CC list for the bug.
