without overthinking it, replace a few memcmp calls with CRYPTO_memcmp

where it is feasible to do so. better safe than sorry.
author: tedu <> 2014-06-04 14:10:23 +0000
committer: tedu <> 2014-06-04 14:10:23 +0000
commit: f1af6a0fd89c7819b589f8168a570bcd35c0f727 (patch)
tree: 2239b639d15116fcc235465d6e2d18383e6f7ce1 /src/lib/libssl/s3_clnt.c
parent: 3968230a0022bbdf64e7caf8e2e998f8299a5add (diff)
download: openbsd-f1af6a0fd89c7819b589f8168a570bcd35c0f727.tar.gz
openbsd-f1af6a0fd89c7819b589f8168a570bcd35c0f727.tar.bz2
openbsd-f1af6a0fd89c7819b589f8168a570bcd35c0f727.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/src/lib/libssl/s3_clnt.c b/src/lib/libssl/s3_clnt.c
index 052d23bbf4..2c3ce60fb3 100644
--- a/src/lib/libssl/s3_clnt.c
+++ b/src/lib/libssl/s3_clnt.c
@@ -887,9 +887,9 @@ ssl3_get_server_hello(SSL *s)
        }
        if (j != 0 && j == s->session->session_id_length &&
-            memcmp(p, s->session->session_id, j) == 0) {
+            CRYPTO_memcmp(p, s->session->session_id, j) == 0) {
                if (s->sid_ctx_length != s->session->sid_ctx_length ||
-                    memcmp(s->session->sid_ctx,
+                    CRYPTO_memcmp(s->session->sid_ctx,
                    s->sid_ctx, s->sid_ctx_length)) {
                        /* actually a client application bug */
                        al = SSL_AD_ILLEGAL_PARAMETER;
author	tedu <>	2014-06-04 14:10:23 +0000
committer	tedu <>	2014-06-04 14:10:23 +0000
commit	f1af6a0fd89c7819b589f8168a570bcd35c0f727 (patch)
tree	2239b639d15116fcc235465d6e2d18383e6f7ce1 /src/lib/libssl/s3_clnt.c
parent	3968230a0022bbdf64e7caf8e2e998f8299a5add (diff)
download	openbsd-f1af6a0fd89c7819b589f8168a570bcd35c0f727.tar.gz openbsd-f1af6a0fd89c7819b589f8168a570bcd35c0f727.tar.bz2 openbsd-f1af6a0fd89c7819b589f8168a570bcd35c0f727.zip

diff --git a/src/lib/libssl/s3_clnt.c b/src/lib/libssl/s3_clnt.c index 052d23bbf4..2c3ce60fb3 100644 --- a/src/lib/libssl/s3_clnt.c +++ b/src/lib/libssl/s3_clnt.c
@@ -887,9 +887,9 @@ ssl3_get_server_hello(SSL *s)
887	}	887	}
888		888
889	if (j != 0 && j == s->session->session_id_length &&	889	if (j != 0 && j == s->session->session_id_length &&
890	memcmp(p, s->session->session_id, j) == 0) {	890	CRYPTO_memcmp(p, s->session->session_id, j) == 0) {
891	if (s->sid_ctx_length != s->session->sid_ctx_length \|\|	891	if (s->sid_ctx_length != s->session->sid_ctx_length \|\|
892	memcmp(s->session->sid_ctx,	892	CRYPTO_memcmp(s->session->sid_ctx,
893	s->sid_ctx, s->sid_ctx_length)) {	893	s->sid_ctx, s->sid_ctx_length)) {
894	/* actually a client application bug */	894	/* actually a client application bug */
895	al = SSL_AD_ILLEGAL_PARAMETER;	895	al = SSL_AD_ILLEGAL_PARAMETER;