CVS commit: src/crypto/dist/openssl/ssl

To: source-changes%netbsd.org@localhost
Subject: CVS commit: src/crypto/dist/openssl/ssl
From: Thomas Klausner <wiz%netbsd.org@localhost>
Date: Thu, 20 Feb 2003 09:39:18 +0200 (EET)

Module Name:    src
Committed By:   wiz
Date:           Thu Feb 20 07:39:18 UTC 2003

Modified Files:
        src/crypto/dist/openssl/ssl: s3_pkt.c

Log Message:
In ssl3_get_record (ssl/s3_pkt.c), minimize information leaked
via timing by performing a MAC computation even if incorrect
block cipher padding has been found.  This is a countermeasure
against active attacks where the attacker has to distinguish
between bad padding and a MAC verification error. (CAN-2003-0078)


To generate a diff of this commit:
cvs rdiff -r1.1.1.4 -r1.2 src/crypto/dist/openssl/ssl/s3_pkt.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-1-6] src/doc
Next by Date: CVS commit: [netbsd-1-6] src/crypto/dist/openssl/ssl
Previous by Thread: CVS commit: [netbsd-1-6] src/doc
Next by Thread: CVS commit: [netbsd-1-6] src/crypto/dist/openssl/ssl
Indexes:

Home | Main Index | Thread Index | Old Index