projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 24b2806) | patch
Timing fix mitigation for FIPS mode.
authorDr. Stephen Henson <steve@openssl.org>
Thu, 31 Jan 2013 14:35:34 +0000 (14:35 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Tue, 5 Feb 2013 16:50:34 +0000 (16:50 +0000)
commit924b11742296c13816a9f301e76fea023003920c
treeddbfd39aa0fe46e61101c623a637fe55791641f8tree | snapshot
parent24b28060975c01b749391778d13ec2ea1323a1aacommit | diff
Timing fix mitigation for FIPS mode.
We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to HMAC_Update to hash additonal blocks
to cover any timing differences caused by removal of padding.
ssl/s3_cbc.c diff | blob | history
ssl/ssl_locl.h diff | blob | history
ssl/t1_enc.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.