src - OpenBSD base system

diff options


context:
space:
mode:

author	Damien Miller <djm@cvs.openbsd.org>	2010-07-13 23:13:17 +0000
committer	Damien Miller <djm@cvs.openbsd.org>	2010-07-13 23:13:17 +0000
commit	deff2c65a5c16ec0c392141c0e191cc2c6b4af2e (patch)
tree	235957f67dd4b2bc83271c685f0354093b69756d
parent	015a751b6ddb5abcc29939b06ac852313af02832 (diff)

s/timing_safe_cmp/timingsafe_bcmp/g

Diffstat

-rw-r--r--

usr.bin/ssh/auth-rsa.c

-rw-r--r--

usr.bin/ssh/channels.c

-rw-r--r--

-rw-r--r--

-rw-r--r--

-rw-r--r--

-rw-r--r--

usr.bin/ssh/monitor.c

-rw-r--r--

usr.bin/ssh/packet.c

-rw-r--r--

usr.bin/ssh/ssh-rsa.c

9 files changed, 23 insertions, 23 deletions

diff --git a/usr.bin/ssh/auth-rsa.c b/usr.bin/ssh/auth-rsa.c
index f9e596b1f4a..7d5261a768b 100644
--- a/usr.bin/ssh/auth-rsa.c
+++ b/usr.bin/ssh/auth-rsa.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: auth-rsa.c,v 1.77 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: auth-rsa.c,v 1.78 2010/07/13 23:13:16 djm Exp $ */

* Author: Tatu Ylonen <ylo@cs.hut.fi>

@@ -113,7 +113,7 @@ auth_rsa_verify_response(Key *key, BIGNUM *challenge, u_char response[16])

MD5_Final(mdbuf, &md);

/* Verify that the response is the original challenge. */

- if (timing_safe_cmp(response, mdbuf, 16) != 0) {

+ if (timingsafe_bcmp(response, mdbuf, 16) != 0) {

/* Wrong answer. */

return (0);

}

diff --git a/usr.bin/ssh/channels.c b/usr.bin/ssh/channels.c
index f09c4fd6ddb..56899655664 100644
--- a/usr.bin/ssh/channels.c
+++ b/usr.bin/ssh/channels.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: channels.c,v 1.307 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: channels.c,v 1.308 2010/07/13 23:13:16 djm Exp $ */

* Author: Tatu Ylonen <ylo@cs.hut.fi>

@@ -912,7 +912,7 @@ x11_open_helper(Buffer *b)

}

/* Check if authentication data matches our fake data. */

if (data_len != x11_fake_data_len ||

- timing_safe_cmp(ucp + 12 + ((proto_len + 3) & ~3),

+ timingsafe_bcmp(ucp + 12 + ((proto_len + 3) & ~3),

x11_fake_data, x11_fake_data_len) != 0) {

debug2("X11 auth data does not match fake data.");

return -1;

diff --git a/usr.bin/ssh/jpake.c b/usr.bin/ssh/jpake.c
index e5f3b7916fe..61240b05156 100644
--- a/usr.bin/ssh/jpake.c
+++ b/usr.bin/ssh/jpake.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: jpake.c,v 1.3 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: jpake.c,v 1.4 2010/07/13 23:13:16 djm Exp $ */

@@ -432,7 +432,7 @@ jpake_check_confirm(const BIGNUM *k,

if (peer_confirm_hash_len != expected_confirm_hash_len)

error("%s: confirmation length mismatch (my %u them %u)",

__func__, expected_confirm_hash_len, peer_confirm_hash_len);

- else if (timing_safe_cmp(peer_confirm_hash, expected_confirm_hash,

+ else if (timingsafe_bcmp(peer_confirm_hash, expected_confirm_hash,

expected_confirm_hash_len) == 0)

success = 1;

bzero(expected_confirm_hash, expected_confirm_hash_len);

diff --git a/usr.bin/ssh/key.c b/usr.bin/ssh/key.c
index d5f4c589994..d3431de94fc 100644
--- a/usr.bin/ssh/key.c
+++ b/usr.bin/ssh/key.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: key.c,v 1.89 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: key.c,v 1.90 2010/07/13 23:13:16 djm Exp $ */

* read_bignum():

@@ -224,7 +224,7 @@ cert_compare(struct KeyCert *a, struct KeyCert *b)

return 0;

if (buffer_len(&a->certblob) != buffer_len(&b->certblob))

return 0;

- if (timing_safe_cmp(buffer_ptr(&a->certblob), buffer_ptr(&b->certblob),

+ if (timingsafe_bcmp(buffer_ptr(&a->certblob), buffer_ptr(&b->certblob),

buffer_len(&a->certblob)) != 0)

return 0;

return 1;

diff --git a/usr.bin/ssh/misc.c b/usr.bin/ssh/misc.c
index 837bee85700..92ecdbb9020 100644
--- a/usr.bin/ssh/misc.c
+++ b/usr.bin/ssh/misc.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: misc.c,v 1.78 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: misc.c,v 1.79 2010/07/13 23:13:16 djm Exp $ */

@@ -831,7 +831,7 @@ ms_to_timeval(struct timeval *tv, int ms)

}

int

-timing_safe_cmp(const void *_s1, const void *_s2, size_t n)

+timingsafe_bcmp(const void *_s1, const void *_s2, size_t n)

{

u_char *s1 = (u_char *)_s1;

u_char *s2 = (u_char *)_s2;

diff --git a/usr.bin/ssh/misc.h b/usr.bin/ssh/misc.h
index 705a9942c61..a8818c9e540 100644
--- a/usr.bin/ssh/misc.h
+++ b/usr.bin/ssh/misc.h

@@ -1,4 +1,4 @@

-/* $OpenBSD: misc.h,v 1.42 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: misc.h,v 1.43 2010/07/13 23:13:16 djm Exp $ */

* Author: Tatu Ylonen <ylo@cs.hut.fi>

@@ -35,7 +35,7 @@ char *tohex(const void *, size_t);

void sanitise_stdfd(void);

void ms_subtract_diff(struct timeval *, int *);

void ms_to_timeval(struct timeval *, int);

-int timing_safe_cmp(const void *, const void *, size_t);

+int timingsafe_bcmp(const void *, const void *, size_t);

struct passwd *pwcopy(struct passwd *);

const char *ssh_gai_strerror(int);

diff --git a/usr.bin/ssh/monitor.c b/usr.bin/ssh/monitor.c
index d3b9211928f..46020c3d55c 100644
--- a/usr.bin/ssh/monitor.c
+++ b/usr.bin/ssh/monitor.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: monitor.c,v 1.107 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: monitor.c,v 1.108 2010/07/13 23:13:16 djm Exp $ */

@@ -433,7 +433,7 @@ monitor_allowed_key(u_char *blob, u_int bloblen)

{

/* make sure key is allowed */

if (key_blob == NULL || key_bloblen != bloblen ||

- timing_safe_cmp(key_blob, blob, key_bloblen))

+ timingsafe_bcmp(key_blob, blob, key_bloblen))

return (0);

return (1);

}

@@ -829,14 +829,14 @@ monitor_valid_userblob(u_char *data, u_int datalen)

len = buffer_len(&b);

if ((session_id2 == NULL) ||

(len < session_id2_len) ||

- (timing_safe_cmp(p, session_id2, session_id2_len) != 0))

+ (timingsafe_bcmp(p, session_id2, session_id2_len) != 0))

fail++;

buffer_consume(&b, session_id2_len);

} else {

p = buffer_get_string(&b, &len);

if ((session_id2 == NULL) ||

(len != session_id2_len) ||

- (timing_safe_cmp(p, session_id2, session_id2_len) != 0))

+ (timingsafe_bcmp(p, session_id2, session_id2_len) != 0))

fail++;

xfree(p);

}

@@ -884,7 +884,7 @@ monitor_valid_hostbasedblob(u_char *data, u_int datalen, char *cuser,

p = buffer_get_string(&b, &len);

if ((session_id2 == NULL) ||

(len != session_id2_len) ||

- (timing_safe_cmp(p, session_id2, session_id2_len) != 0))

+ (timingsafe_bcmp(p, session_id2, session_id2_len) != 0))

fail++;

xfree(p);

@@ -1363,7 +1363,7 @@ mm_get_kex(Buffer *m)

kex->session_id = buffer_get_string(m, &kex->session_id_len);

if (session_id2 == NULL ||

kex->session_id_len != session_id2_len ||

- timing_safe_cmp(kex->session_id, session_id2, session_id2_len) != 0)

+ timingsafe_bcmp(kex->session_id, session_id2, session_id2_len) != 0)

fatal("mm_get_get: internal error: bad session id");

kex->we_need = buffer_get_int(m);

kex->kex[KEX_DH_GRP1_SHA1] = kexdh_server;

diff --git a/usr.bin/ssh/packet.c b/usr.bin/ssh/packet.c
index 522d2f466f2..d948890cf0e 100644
--- a/usr.bin/ssh/packet.c
+++ b/usr.bin/ssh/packet.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: packet.c,v 1.167 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: packet.c,v 1.168 2010/07/13 23:13:16 djm Exp $ */

* Author: Tatu Ylonen <ylo@cs.hut.fi>

@@ -1297,7 +1297,7 @@ packet_read_poll2(u_int32_t *seqnr_p)

macbuf = mac_compute(mac, active_state->p_read.seqnr,

buffer_ptr(&active_state->incoming_packet),

buffer_len(&active_state->incoming_packet));

- if (timing_safe_cmp(macbuf, buffer_ptr(&active_state->input),

+ if (timingsafe_bcmp(macbuf, buffer_ptr(&active_state->input),

mac->mac_len) != 0) {

logit("Corrupted MAC on input.");

if (need > PACKET_MAX_SIZE)

diff --git a/usr.bin/ssh/ssh-rsa.c b/usr.bin/ssh/ssh-rsa.c
index dbb31d83143..08ee9e290ac 100644
--- a/usr.bin/ssh/ssh-rsa.c
+++ b/usr.bin/ssh/ssh-rsa.c

@@ -1,4 +1,4 @@

-/* $OpenBSD: ssh-rsa.c,v 1.42 2010/07/13 11:52:06 djm Exp $ */

+/* $OpenBSD: ssh-rsa.c,v 1.43 2010/07/13 23:13:16 djm Exp $ */

@@ -247,11 +247,11 @@ openssh_RSA_verify(int type, u_char *hash, u_int hashlen,

error("bad decrypted len: %d != %d + %d", len, hlen, oidlen);

goto done;

}

- if (timing_safe_cmp(decrypted, oid, oidlen) != 0) {

+ if (timingsafe_bcmp(decrypted, oid, oidlen) != 0) {

error("oid mismatch");

goto done;

}

- if (timing_safe_cmp(decrypted + oidlen, hash, hlen) != 0) {

+ if (timingsafe_bcmp(decrypted + oidlen, hash, hlen) != 0) {

error("hash mismatch");

goto done;

}