crypto: talitos - Fix timing leak in ESP ICV verification (79960943) · Commits · Mirrors / github.com / raspberrypi_linux

Commit 79960943 authored Nov 15, 2015 by

David Gstir Committed by Herbert Xu Nov 16, 2015

crypto: talitos - Fix timing leak in ESP ICV verification



Using non-constant time memcmp() makes the verification of the authentication
tag in the decrypt path vulnerable to timing attacks. Fix this by using
crypto_memneq() instead.

Cc: stable@vger.kernel.org
Signed-off-by: David Gstir <david@sigma-star.at>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>

parent cb8affb5

Hide whitespace changes

Inline Side-by-side

Please register or to comment