projects / archaic-openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b6602e9) | patch
Timing fix mitigation for FIPS mode.
authorDr. Stephen Henson <steve@openssl.org>
Thu, 31 Jan 2013 14:35:34 +0000 (14:35 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Thu, 31 Jan 2013 14:41:43 +0000 (14:41 +0000)
commitc6f9476588760587e6d86dfa6c035612470e17cf
tree51519437df3efc6fb0da67d6cf5f66255f127211tree | snapshot
parentb6602e9084cdc7b4c780044bb07f90cf382bb5eacommit | diff
Timing fix mitigation for FIPS mode.
We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to HMAC_Update to hash additonal blocks
to cover any timing differences caused by removal of padding.
ssl/s3_cbc.c diff | blob | history
ssl/ssl_locl.h diff | blob | history
ssl/t1_enc.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.