Suyu/mbedtls
1
0
Fork 0
mirror of https://git.suyu.dev/suyu/mbedtls.git synced 2026-01-04 21:56:21 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Removed further timing differences during SSL message decryption in ssl_decrypt_buf()

Browse source 
New padding checking is unbiased on correct or incorrect padding and
has no branch prediction timing differences.

The additional MAC checks further straighten out the timing differences.
This commit is contained in:
Paul Bakker 2013-02-27 14:48:00 +01:00
parent 2ca8ad10a1
commit e47b34bdc8
8 changed files with 73 additions and 30 deletions
Download patch file Download diff file Expand all files Collapse all files

4
ChangeLog
View file

@ -4,6 +4,10 @@ PolarSSL ChangeLog
Bugfix
* Fixed memory leak in ssl_free() and ssl_reset() for active session
Security
* Removed further timing differences during SSL message decryption in
ssl_decrypt_buf()
= Version 1.2.5 released 2013-02-02
Changes
* Allow enabling of dummy error_strerror() to support some use-cases