Re: [PATCH 5/6] bluetooth/smp: use constant time memory comparison for secret values

From: Marcel Holtmann
Date: Sat Jun 10 2017 - 09:49:38 EST

Next message: Peter Zijlstra: "Re: [PATCH v2 1/2] cpufreq: Make iowait boost a policy option"
Previous message: Jon Maloy: "RE: [PATCH] net: tipc: Fix a sleep-in-atomic bug in tipc_msg_reverse"
In reply to: Jason A. Donenfeld: "[PATCH 5/6] bluetooth/smp: use constant time memory comparison for secret values"
Next in thread: Jason A. Donenfeld: "[PATCH 1/6] sunrpc: use constant time memory comparison for mac"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Jason,

> This file is filled with complex cryptography. Thus, the comparisons of
> MACs and secret keys and curve points and so forth should not add timing
> attacks, which could either result in a direct forgery, or, given the
> complexity, some other type of attack.
>
> Signed-off-by: Jason A. Donenfeld <Jason@xxxxxxxxx>
> Cc: Marcel Holtmann <marcel@xxxxxxxxxxxx>
> Cc: Gustavo Padovan <gustavo@xxxxxxxxxxx>
> Cc: Johan Hedberg <johan.hedberg@xxxxxxxxx>
> Cc: linux-bluetooth@xxxxxxxxxxxxxxx
> Cc: stable@xxxxxxxxxxxxxxx
> ---
> net/bluetooth/smp.c | 39 ++++++++++++++++++++-------------------
> 1 file changed, 20 insertions(+), 19 deletions(-)

patch has been applied to bluetooth-next tree.

Regards

Marcel

Next message: Peter Zijlstra: "Re: [PATCH v2 1/2] cpufreq: Make iowait boost a policy option"
Previous message: Jon Maloy: "RE: [PATCH] net: tipc: Fix a sleep-in-atomic bug in tipc_msg_reverse"
In reply to: Jason A. Donenfeld: "[PATCH 5/6] bluetooth/smp: use constant time memory comparison for secret values"
Next in thread: Jason A. Donenfeld: "[PATCH 1/6] sunrpc: use constant time memory comparison for mac"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]