commit fa75fdba32eae335f286afb1dc93ef1b5ec72615
author Brian Carlstrom <bdc@google.com> Fri Feb 01 23:44:05 2013 -0800
committer Brian Carlstrom <bdc@google.com> Mon Feb 04 10:56:20 2013 -0800
tree 6feddc5bf7c637ed8425aae362fecc235f66a030
parent 4b0baa1ed0dba48c5f450864e0369c601040f84d

CVE-2013-0169: Make CBC decoding constant time

(cherry-picked from 2c082d25fc3f0dd6e56c45407fe10638b904083c)

Bug: 8017911
Bug: 8095088
Change-Id: I57556e120fd1f585d38739d0d6aaf02bcbe45fbd

ssl/t1_lib.c

diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index 26d19e9..9972b1a 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -2215,7 +2215,7 @@
 	HMAC_Update(&hctx, etick, eticklen);
 	HMAC_Final(&hctx, tick_hmac, NULL);
 	HMAC_CTX_cleanup(&hctx);
-	if (memcmp(tick_hmac, etick + eticklen, mlen))
+	if (CRYPTO_memcmp(tick_hmac, etick + eticklen, mlen))
 		return 2;
 	/* Attempt to decrypt session data */
 	/* Move p after IV to start of encrypted ticket, update length */