From 9225a4550abebd26ff3642d8f5ed4f96b2e4bff7 Mon Sep 17 00:00:00 2001 From: Matthias Schiffer Date: Sun, 31 Aug 2014 16:21:24 +0200 Subject: Replace memcmp with a constant-time version in some places --- src/methods/composed_gmac/composed_gmac.c | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'src/methods/composed_gmac') diff --git a/src/methods/composed_gmac/composed_gmac.c b/src/methods/composed_gmac/composed_gmac.c index 72f5c8b..86ae66b 100644 --- a/src/methods/composed_gmac/composed_gmac.c +++ b/src/methods/composed_gmac/composed_gmac.c @@ -301,7 +301,7 @@ static bool method_decrypt(fastd_peer_t *peer, fastd_method_session_state_t *ses ok = session->ghash->digest(session->ghash_state, &tag, inblocks+1, n_blocks*sizeof(fastd_block128_t)); } - if (!ok || memcmp(&tag, &outblocks[0], sizeof(fastd_block128_t)) != 0) { + if (!ok || !block_equal(&tag, &outblocks[0])) { fastd_buffer_free(*out); return false; } -- cgit v1.2.3