Use timingsafe_memcmp when comparing authenticators - openbsd - A mirror of https://github.com/libressl/openbsd.git

diff options

author	kenjiro <>	2025-06-03 08:42:15 +0000
committer	kenjiro <>	2025-06-03 08:42:15 +0000
commit	0fc5b6d312fea35d788e92ffc5a6dc32638d32bc (patch)
tree	434d3918c993050065791d5dd314e69293d80c26 /src/lib/libtls/tls_server.c
parent	24f7d078f0a54152d4c2c2452303352cdc6dae66 (diff)
download	openbsd-0fc5b6d312fea35d788e92ffc5a6dc32638d32bc.tar.gz openbsd-0fc5b6d312fea35d788e92ffc5a6dc32638d32bc.tar.bz2 openbsd-0fc5b6d312fea35d788e92ffc5a6dc32638d32bc.zip

Use timingsafe_memcmp when comparing authenticators

Replace memcmp() with timingsafe_memcmp() for authentication tag comparison in AES-CCM, GCM, PKCS12 and AES key unwrap code paths to ensure constant-time behavior and avoid potential timing side channels. This aligns with OpenSSL 1e4a355. ok tb@

Diffstat (limited to 'src/lib/libtls/tls_server.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: