git.openssl.org Git - openssl.git/commit

author	Dr. Stephen Henson <steve@openssl.org>
	Thu, 31 Jan 2013 14:35:34 +0000 (14:35 +0000)
committer	Dr. Stephen Henson <steve@openssl.org>
	Tue, 5 Feb 2013 16:50:34 +0000 (16:50 +0000)
commit	924b11742296c13816a9f301e76fea023003920c
tree	ddbfd39aa0fe46e61101c623a637fe55791641f8	tree \| snapshot
parent	24b28060975c01b749391778d13ec2ea1323a1aa	commit \| diff

Timing fix mitigation for FIPS mode.
We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to HMAC_Update to hash additonal blocks
to cover any timing differences caused by removal of padding.

ssl/s3_cbc.c		diff \| blob \| history
ssl/ssl_locl.h		diff \| blob \| history
ssl/t1_enc.c		diff \| blob \| history

OpenSSL source code

RSS Atom