Timing fix mitigation for FIPS mode.

We have to use EVP in FIPS mode so we can only partially mitigate timing differences. Make an extra call to EVP_DigestSignUpdate to hash additonal blocks to cover any timing differences caused by removal of padding.
author: Dr. Stephen Henson <steve@openssl.org> 2013-01-29 14:44:36 +0000
committer: Dr. Stephen Henson <steve@openssl.org> 2013-01-31 12:34:10 +0000
commit: b908e88ec15aa0a74805e3f2236fc4f83f2789c2 (patch)
tree: 424b1a8703f65502460f311a42d3da7521a4085b /ssl/ssl_locl.h
parent: 014265eb02e26f35c8db58e2ccbf100b0b2f0072 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/ssl/ssl_locl.h b/ssl/ssl_locl.h
index dd8388cace..e9430cd3db 100644
--- a/ssl/ssl_locl.h
+++ b/ssl/ssl_locl.h
@@ -1167,4 +1167,8 @@ void ssl3_cbc_digest_record(
 	unsigned mac_secret_length,
 	char is_sslv3);
 
+void tls_fips_digest_extra(
+	const EVP_CIPHER_CTX *cipher_ctx, EVP_MD_CTX *mac_ctx,
+	const unsigned char *data, size_t data_len, size_t orig_len);
+
 #endif
author	Dr. Stephen Henson <steve@openssl.org>	2013-01-29 14:44:36 +0000
committer	Dr. Stephen Henson <steve@openssl.org>	2013-01-31 12:34:10 +0000
commit	b908e88ec15aa0a74805e3f2236fc4f83f2789c2 (patch)
tree	424b1a8703f65502460f311a42d3da7521a4085b /ssl/ssl_locl.h
parent	014265eb02e26f35c8db58e2ccbf100b0b2f0072 (diff)