Hand-conversion and audit phase of memcmp transition

Here I looked at the results of the automated conversion and cleaned them up as follows: If there was a tor_memcmp or tor_memeq that was in fact "safe"[*] I changed it to a fast_memcmp or fast_memeq. Otherwise if there was a tor_memcmp that could turn into a tor_memneq or tor_memeq, I converted it. This wants close attention. [*] I'm erring on the side of caution here, and leaving some things as tor_memcmp that could in my opinion use the data-dependent fast_memcmp variant.
author: Nick Mathewson <nickm@torproject.org> 2011-05-10 16:58:38 -0400
committer: Nick Mathewson <nickm@torproject.org> 2011-05-11 16:12:51 -0400
commit: 59f9097d5c3dc010847c359888d31757d1c97904 (patch)
tree: baed5184d13d62645e00d1ed815ffc0861b2ff87 /src/common/crypto.c
parent: db7b2a33eef9c8d432442b072f9c8868a068bb91 (diff)
download: tor-59f9097d5c3dc010847c359888d31757d1c97904.tar.gz
tor-59f9097d5c3dc010847c359888d31757d1c97904.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/src/common/crypto.c b/src/common/crypto.c
index 926942897f..f3268fe183 100644
--- a/src/common/crypto.c
+++ b/src/common/crypto.c
@@ -845,7 +845,7 @@ crypto_pk_public_checksig_digest(crypto_pk_env_t *env, const char *data,
     tor_free(buf);
     return -1;
   }
-  if (tor_memcmp(buf, digest, DIGEST_LEN)) {
+  if (tor_memneq(buf, digest, DIGEST_LEN)) {
     log_warn(LD_CRYPTO, "Signature mismatched with digest.");
     tor_free(buf);
     return -1;
author	Nick Mathewson <nickm@torproject.org>	2011-05-10 16:58:38 -0400
committer	Nick Mathewson <nickm@torproject.org>	2011-05-11 16:12:51 -0400
commit	59f9097d5c3dc010847c359888d31757d1c97904 (patch)
tree	baed5184d13d62645e00d1ed815ffc0861b2ff87 /src/common/crypto.c
parent	db7b2a33eef9c8d432442b072f9c8868a068bb91 (diff)
download	tor-59f9097d5c3dc010847c359888d31757d1c97904.tar.gz tor-59f9097d5c3dc010847c359888d31757d1c97904.zip