nettle/mac: in mac_fast call set_nonce after set_key

Calling set_nonce before set_key is plain incorrect. For GMAC key is not
initialized. For UMAC set_key will reset nonce to empty.

Signed-off-by: Dmitry Eremin-Solenikov <dbaryshkov@gmail.com>

diff --git a/lib/nettle/mac.c b/lib/nettle/mac.c
index 64fa7e4925973eece2a9130ebcc4b2b9ca30b237..6b688add33fe37aaa75ad09fcb313552e6134777 100644 (file)
--- a/lib/nettle/mac.c
+++ b/lib/nettle/mac.c
@@ -391,9 +391,9 @@ static int wrap_nettle_mac_fast(gnutls_mac_algorithm_t algo,
        if (ret < 0)
                return gnutls_assert_val(ret);
 
+       ctx.set_key(&ctx, key_size, key);
        if (ctx.set_nonce)
                ctx.set_nonce(&ctx, nonce_size, nonce);
-       ctx.set_key(&ctx, key_size, key);
        ctx.update(&ctx, text_size, text);
        ctx.digest(&ctx, ctx.length, digest);