From 9822d929c08eed1446dc09464293449326730af2 Mon Sep 17 00:00:00 2001
From: markus <>
Date: Thu, 14 Feb 2013 15:11:44 +0000
Subject: cherry pick bugfixes for
 http://www.openssl.org/news/secadv_20130205.txt from the openssl git (changes
 between openssl 1.0.1c and 1.0.1d). ok djm@

---
 src/lib/libcrypto/rsa/rsa_oaep.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src/lib/libcrypto/rsa')

diff --git a/src/lib/libcrypto/rsa/rsa_oaep.c b/src/lib/libcrypto/rsa/rsa_oaep.c
index 553d212ebe..e08ac151ff 100644
--- a/src/lib/libcrypto/rsa/rsa_oaep.c
+++ b/src/lib/libcrypto/rsa/rsa_oaep.c
@@ -149,7 +149,7 @@ int RSA_padding_check_PKCS1_OAEP(unsigned char *to, int tlen,
 	if (!EVP_Digest((void *)param, plen, phash, NULL, EVP_sha1(), NULL))
 		return -1;
 
-	if (memcmp(db, phash, SHA_DIGEST_LENGTH) != 0 || bad)
+	if (timingsafe_bcmp(db, phash, SHA_DIGEST_LENGTH) != 0 || bad)
 		goto decoding_err;
 	else
 		{
-- 
cgit v1.2.3-55-g6feb