Erik Schlyter a51e88c3b1 Fix #24999: copy left-overs before we XOR into c. (#25001) ...

It is important we copy the left-overs in the message *before* we XOR
it into the ciphertext, because if we're encrypting in-place (i.e., m ==
c), we will manipulate the message that will be used for tag generation.
This will generate faulty tags when message length doesn't conform with
16 byte blocks.

2025-08-25 18:50:36 +02:00

15 KiB

Raw Blame History

View Raw