From f47b0957ab71a44ebb8a3430bab7a033b2276421 Mon Sep 17 00:00:00 2001
From: Paul Elliott <paul.elliott@arm.com>
Date: Fri, 21 May 2021 18:02:33 +0100
Subject: [PATCH] Set tag to 'impossible' value on failure to encrypt

Signed-off-by: Paul Elliott <paul.elliott@arm.com>
---
 library/psa_crypto.c | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/library/psa_crypto.c b/library/psa_crypto.c
index fb74a0d85..0b6478176 100644
--- a/library/psa_crypto.c
+++ b/library/psa_crypto.c
@@ -3626,6 +3626,11 @@ psa_status_t psa_aead_finish( psa_aead_operation_t *operation,
 
 exit:
 
+    /* In case the operation fails and the user fails to check for failure or
+     * the zero tag size, make sure the tag is set to something impossible. */
+    if( status != PSA_SUCCESS )
+        memset(tag, '!', tag_size);
+
     psa_aead_abort( operation );
 
     return( status );