Fix bug in OpenSSLAeadCipher with empty plaintext. (#1281)

If the user wants to encrypt and calls doFinal(input, 123, 0); without a prior call to update, it currently fails with an array out of bounds exception. Instead, it should encrypt the empty string.
google · Dec 19, 2024 · 77c9752 · 77c9752
1 parent 94d4d51
commit 77c9752
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/common/src/main/java/org/conscrypt/OpenSSLAeadCipher.java b/common/src/main/java/org/conscrypt/OpenSSLAeadCipher.java
@@ -392,7 +392,7 @@ int doFinalInternal(byte[] input, int inputOffset, int inputLen,
             inOffset = 0;
             inLen = bufCount;
         } else {
-            if (inputLen == 0) {
+            if (inputLen == 0 && input == null) {
                 in = EmptyArray.BYTE; // input can be null when inputLen == 0
             } else {
                 in = input;