]> git.ipfire.org Git - thirdparty/kernel/linux.git/commit
projects / thirdparty / kernel / linux.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2ffb4f5) | patch
net/tcp-ao: Fix MAC comparison to be constant-time
authorEric Biggers <ebiggers@kernel.org>
Mon, 2 Mar 2026 20:36:00 +0000 (12:36 -0800)
committerJakub Kicinski <kuba@kernel.org>
Wed, 4 Mar 2026 01:16:54 +0000 (17:16 -0800)
commit67edfec516d30d3e62925c397be4a1e5185802fc
treeee4b94f898a13828185543d5644550203d1430d0tree | snapshot
parent2ffb4f5c2ccb2fa1c049dd11899aee7967deef5acommit | diff
net/tcp-ao: Fix MAC comparison to be constant-time

To prevent timing attacks, MACs need to be compared in constant
time.  Use the appropriate helper function for this.

Fixes: 0a3a809089eb ("net/tcp: Verify inbound TCP-AO signed segments")
Cc: stable@vger.kernel.org
Signed-off-by: Eric Biggers <ebiggers@kernel.org>
Reviewed-by: Dmitry Safonov <0x7f454c46@gmail.com>
Link: https://patch.msgid.link/20260302203600.13561-1-ebiggers@kernel.org
Signed-off-by: Jakub Kicinski <kuba@kernel.org>
net/ipv4/Kconfig diff | blob | blame | history
net/ipv4/tcp_ao.c diff | blob | blame | history
A mirror of Linus' kernel repository