Gitiles
Code Review Sign In
gerrit-public.fairphone.software / kernel / msm-5.4 / 79960943fdc114fd4583c9ab164b5c89da7aa601
commit79960943fdc114fd4583c9ab164b5c89da7aa601[log] [tgz]
authorDavid Gstir <david@sigma-star.at>Sun Nov 15 17:14:42 2015 +0100
committerHerbert Xu <herbert@gondor.apana.org.au>Mon Nov 16 21:39:24 2015 +0800
treeeee34426e869bbc88d47c233f490808dc38ffa02
parentcb8affb55c7e64816f3effcd9b2fc3268c016fac [diff]
crypto: talitos - Fix timing leak in ESP ICV verification

Using non-constant time memcmp() makes the verification of the authentication
tag in the decrypt path vulnerable to timing attacks. Fix this by using
crypto_memneq() instead.

Cc: stable@vger.kernel.org
Signed-off-by: David Gstir <david@sigma-star.at>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
1 file changed
tree: eee34426e869bbc88d47c233f490808dc38ffa02
  1. arch/
  2. block/
  3. certs/
  4. crypto/
  5. Documentation/
  6. drivers/
  7. firmware/
  8. fs/
  9. include/
  10. init/
  11. ipc/
  12. kernel/
  13. lib/
  14. mm/
  15. net/
  16. samples/
  17. scripts/
  18. security/
  19. sound/
  20. tools/
  21. usr/
  22. virt/
  23. .get_maintainer.ignore
  24. .gitignore
  25. .mailmap
  26. COPYING
  27. CREDITS
  28. Kbuild
  29. Kconfig
  30. MAINTAINERS
  31. Makefile
  32. README
  33. REPORTING-BUGS