Removed further timing differences during SSL message decryption in ssl_decrypt_buf() New padding checking is unbiased on correct or incorrect padding and has no branch prediction timing differences. The additional MAC checks further straighten out the timing differences.

commit: e47b34bdc8507b63758402f69e7623d11dfb6984 [log] [tgz]
author: Paul Bakker <p.j.bakker@polarssl.org> Wed Feb 27 14:48:00 2013 +0100
committer: Paul Bakker <p.j.bakker@polarssl.org> Wed Feb 27 14:48:00 2013 +0100
tree: 9d9a4970f6214512ebaf65b811c42e02207ed054
parent: 2ca8ad10a121e7d579ae935ccd9e9508604680ec [diff] [blame]
diff --git a/include/polarssl/sha2.h b/include/polarssl/sha2.h
index 054988d..39d9347 100644
--- a/include/polarssl/sha2.h
+++ b/include/polarssl/sha2.h

@@ -160,6 +160,9 @@
  */
 int sha2_self_test( int verbose );
 
+/* Internal use */
+void sha2_process( sha2_context *ctx, const unsigned char data[64] );
+
 #ifdef __cplusplus
 }
 #endif
commit	e47b34bdc8507b63758402f69e7623d11dfb6984	[log] [tgz]
author	Paul Bakker <p.j.bakker@polarssl.org>	Wed Feb 27 14:48:00 2013 +0100
committer	Paul Bakker <p.j.bakker@polarssl.org>	Wed Feb 27 14:48:00 2013 +0100
tree	9d9a4970f6214512ebaf65b811c42e02207ed054
parent	2ca8ad10a121e7d579ae935ccd9e9508604680ec [diff] [blame]