- djm@cvs.openbsd.org 2010/07/13 11:52:06 [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c] [packet.c ssh-rsa.c] implement a timing_safe_cmp() function to compare memory without leaking timing information by short-circuiting like memcmp() and use it for some of the more sensitive comparisons (though nothing high-value was readily attackable anyway); "looks ok" markus@

commit: 8a0268f1b3f62292d4124f8d158e0587c4f7c330 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Fri Jul 16 13:57:51 2010 +1000
committer: Damien Miller <djm@mindrot.org> Fri Jul 16 13:57:51 2010 +1000
tree: 43493a3202569a2939f5616127d9de8689613a7b
parent: d0244d498ba970b9d9348429eaf7a4a0ef2b903c [diff] [blame]
diff --git a/ChangeLog b/ChangeLog
index f652e61..d650f63 100644
--- a/ChangeLog
+++ b/ChangeLog

@@ -22,6 +22,13 @@
         Hostname %h.example.org
      
      "I like it" markus@
+   - djm@cvs.openbsd.org 2010/07/13 11:52:06
+     [auth-rsa.c channels.c jpake.c key.c misc.c misc.h monitor.c]
+     [packet.c ssh-rsa.c]
+     implement a timing_safe_cmp() function to compare memory without leaking
+     timing information by short-circuiting like memcmp() and use it for
+     some of the more sensitive comparisons (though nothing high-value was
+     readily attackable anyway); "looks ok" markus@
 
 20100714
  - (tim) [contrib/redhat/openssh.spec] Bug 1796: Test for skip_x11_askpass
commit	8a0268f1b3f62292d4124f8d158e0587c4f7c330	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Fri Jul 16 13:57:51 2010 +1000
committer	Damien Miller <djm@mindrot.org>	Fri Jul 16 13:57:51 2010 +1000
tree	43493a3202569a2939f5616127d9de8689613a7b
parent	d0244d498ba970b9d9348429eaf7a4a0ef2b903c [diff] [blame]