Fix the length positioning of the AAD string used by AES GCM. The implementation was not working at all due to this bug, but also this feature is not used in any kernel so far and thus did not pop up.

OpenCL/inc_cipher_aes-gcm.cl

@@ -273,8 +273,8 @@ DECLSPEC void AES_GCM_GHASH (PRIVATE_AS const u32 *subkey, PRIVATE_AS const u32
 
   u32 len_buf[4];
 
-  len_buf[0] = aad_len * 8;
-  len_buf[1] = 0;
+  len_buf[0] = 0;
+  len_buf[1] = aad_len * 8;
   len_buf[2] = 0;
   len_buf[3] = enc_len * 8;
 
@@ -294,8 +294,8 @@ DECLSPEC void AES_GCM_GHASH_GLOBAL (PRIVATE_AS const u32 *subkey, PRIVATE_AS con
 
   u32 len_buf[4];
 
-  len_buf[0] = aad_len * 8;
-  len_buf[1] = 0;
+  len_buf[0] = 0;
+  len_buf[1] = aad_len * 8;
   len_buf[2] = 0;
   len_buf[3] = enc_len * 8;