1 files changed, 1 insertions, 1 deletions
diff --git a/src/lib/libssl/s3_both.c b/src/lib/libssl/s3_both.c
index b63460a56d..6981852b5b 100644
--- a/src/lib/libssl/s3_both.c
+++ b/src/lib/libssl/s3_both.c
@@ -263,7 +263,7 @@ int ssl3_get_finished(SSL *s, int a, int b)
                goto f_err;
                }
-        if (memcmp(p, s->s3->tmp.peer_finish_md, i) != 0)
+        if (timingsafe_bcmp(p, s->s3->tmp.peer_finish_md, i) != 0)
                {
                al=SSL_AD_DECRYPT_ERROR;
                SSLerr(SSL_F_SSL3_GET_FINISHED,SSL_R_DIGEST_CHECK_FAILED);

diff --git a/src/lib/libssl/s3_both.c b/src/lib/libssl/s3_both.c index b63460a56d..6981852b5b 100644 --- a/src/lib/libssl/s3_both.c +++ b/src/lib/libssl/s3_both.c
@@ -263,7 +263,7 @@ int ssl3_get_finished(SSL *s, int a, int b)
263	goto f_err;	263	goto f_err;
264	}	264	}
265		265
266	if (memcmp(p, s->s3->tmp.peer_finish_md, i) != 0)	266	if (timingsafe_bcmp(p, s->s3->tmp.peer_finish_md, i) != 0)
267	{	267	{
268	al=SSL_AD_DECRYPT_ERROR;	268	al=SSL_AD_DECRYPT_ERROR;
269	SSLerr(SSL_F_SSL3_GET_FINISHED,SSL_R_DIGEST_CHECK_FAILED);	269	SSLerr(SSL_F_SSL3_GET_FINISHED,SSL_R_DIGEST_CHECK_FAILED);