projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 820988a) | patch
Timing fix mitigation for FIPS mode.
authorDr. Stephen Henson <steve@openssl.org>
Tue, 29 Jan 2013 14:44:36 +0000 (14:44 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Wed, 6 Feb 2013 13:56:13 +0000 (13:56 +0000)
commitd91d9acc584dc25f39d5cc402a27ad9c8bb77535
treeb4f3dd53c71ba885ec5ea7812433edafe034a973tree | snapshot
parent820988a0c09e53a2bae7a8b1464cd962661e0198commit | diff
Timing fix mitigation for FIPS mode.
We have to use EVP in FIPS mode so we can only partially mitigate
timing differences.

Make an extra call to EVP_DigestSignUpdate to hash additonal blocks
to cover any timing differences caused by removal of padding.
(cherry picked from commit b908e88ec15aa0a74805e3f2236fc4f83f2789c2)
ssl/s3_cbc.c diff | blob | history
ssl/ssl_locl.h diff | blob | history
ssl/t1_enc.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.