diff options
| author | Jo Van Bulck <[email protected]> | 2025-03-28 15:04:47 +0000 |
|---|---|---|
| committer | Mikulas Patocka <[email protected]> | 2025-03-28 17:25:42 +0000 |
| commit | 8bde1033f9cfc1c08628255cc434c6cf39c9d9ba (patch) | |
| tree | 5d7ec614255dec32435b1762f59f4aaa91e014f4 /drivers/net/dsa/dsa_loop.c | |
| parent | dm-verity: support block number limits for different ioprio classes (diff) | |
| download | kernel-8bde1033f9cfc1c08628255cc434c6cf39c9d9ba.tar.gz kernel-8bde1033f9cfc1c08628255cc434c6cf39c9d9ba.zip | |
dm-integrity: fix non-constant-time tag verification
When using dm-integrity in standalone mode with a keyed hmac algorithm,
integrity tags are calculated and verified internally.
Using plain memcmp to compare the stored and computed tags may leak the
position of the first byte mismatch through side-channel analysis,
allowing to brute-force expected tags in linear time (e.g., by counting
single-stepping interrupts in confidential virtual machine environments).
Co-developed-by: Luca Wilke <[email protected]>
Signed-off-by: Luca Wilke <[email protected]>
Signed-off-by: Jo Van Bulck <[email protected]>
Signed-off-by: Mikulas Patocka <[email protected]>
Cc: [email protected]
Diffstat (limited to 'drivers/net/dsa/dsa_loop.c')
0 files changed, 0 insertions, 0 deletions